Bonum Certa Men Certa
Revealed: Microsoft is Trying to Corrupt the UK in Order to Eliminate Its OpenDocument Format-Oriented Standards Policy | Forget the FUD About Bash and OpenSSL, Microsoft Windows Blamed for Massive Credit Cards Heist

Windows 'Update' and NSA Back Doors, Including a 19-Year Bug Door in Microsoft Windows

Summary: The back doors-enabled Microsoft Windows is being revealed and portrayed as the Swiss cheese that it really is after massive holes are discovered (mostly to be buried by a .NET propaganda blitz)

Windows 'Update', which essentially translates into Microsoft manipulating binaries on people's machines without any changelog (at least not in source code form), is making the news again this month. Windows 'Update' is happening quite often (a monthly recurrence), but this time there is a lot to say about it.



The British NHS, which holds full medical records of very many individuals, recently received a lot of flack for sticking with an unsupported operating system that was released when I was a teenager instead of upgrading to recently-built Free software like GNU/Linux. Guess what happened to the NHS? "NHS XP patch scratch leaves patient records wide open to HACKERS" says the British press, meaning that not only the NSA gets access to NHS data:

Thousands of patient records could be left exposed to hackers, as up to 20 NHS trusts have failed to put an agreement in place with Microsoft to extend security support for Windows XP via a patch, The Register can reveal.


Another story of a botched update of Windows says that "Crypto attack that hijacked Windows Update goes mainstream in Amazon Cloud":

Underscoring just how broken the widely used MD5 hashing algorithm is, a software engineer racked up just 65 cents in computing fees to replicate the type of attack a powerful nation-state used in 2012 to hijack Microsoft's Windows Update mechanism.


That's what one gets when using weak ciphers that the NSA promotes and Microsoft willingly spreads. Windows Update is a dangerous tool for many reasons not just because it is bricking Linux devices these days but because it's a tool that gives the NSA a lot of power. Before an update kicks in the NSA is given information that allows it to take full control of PCs with Windows, remotely even (this is done every month). This may sound benign until one learns about Stuxnet (weaponised malware of the NSA) and considers this latest Patch Tuesday:

Microsoft is issuing the largest number of monthly security advisories since June 2011, five of them critical and affecting all supported versions of Windows. And applying the patches will be time consuming, experts say.

“Next week will tell us how many CVEs are involved but suffice to say, this patch load will be a big impact to the enterprise,” says Russ Ernst, the director of product management for Lumension.


CBS, being not just a proponent of espionage, mass surveillance, assassination and violent wars but also a proponent of back doors, had its site ZDNet downplay the above. "So far in calendar year 2014," it said, "Microsoft has fixed 215 vulnerabilities in Internet Explorer" (lots of potential NSA back doors). Then come some lame excuses and damage control from Microsoft in the update, trying to make its bad record look like a positive, neglecting that fact that Microsoft has been secretly patching holes to yield fake numbers and give a false sense of security. Here is the full summary:

So far in calendar year 2014, Microsoft has fixed 215 vulnerabilities in Internet Explorer, with more coming out today. There have been security updates to Internet Explorer every month this year except for January.


This other report, titled "Potentially catastrophic bug bites all versions of Windows. Patch now", does not entertain the possibility of back/bug doors in Microsoft Windows being exploited, despite that fact that Microsoft already told the NSA (prodifing exploit knowledge), which undoubtedly engages in illegal intrusions/cracking. A report from IDG notes that this bug is nearly two decades old and add that only "[w]ith help from IBM, Microsoft has patched a critical Windows vulnerability that flew under the radar for nearly two decades. "

"How many times might this flaw have been exploited by now?"So IBM, despite having no access to source code (as far as we can tell), was perhaps the only reason why Microsoft addressed this issue two decades late, eh? How many times might this flaw have been exploited by now? A reader of us, alluding to that nonsense .NET PR, explains: "Perhaps a big reason for the PR teams trumpeting the open-core or freemium model?"

It sure serves as a good distraction. When Windows XP support (patches) came to an end a Microsoft-connected firm immediately (on the very same day) started throwing brands and logos in relation to an OpenSSL bug, stealing the show and spreading FUD for many months, generalising it so as to appear like a serious, inherent issue in FOSS.

Watch this critical remote code execution flaw in Windows. It is extremely serious, but there is no logo or brand for it (unlike FOSS FUD like "Heartbleed" or "Shellshock" -- with a brand that was even perpetuated by the Russia-based Mandriva the other day).

Revealed: Microsoft is Trying to Corrupt the UK in Order to Eliminate Its OpenDocument Format-Oriented Standards Policy | Forget the FUD About Bash and OpenSSL, Microsoft Windows Blamed for Massive Credit Cards Heist

Recent Techrights' Posts

Before Freenode Collapsed Its Staff (the People Who Now Run Libera.Chat) Were Censoring/Silencing Some Free Software Supporters
We still have this issue in the Free software community
All We Want to See is Any Form of Accountability in Europe's Largest Institutions
Because people at the top of institutions should never be above the law!
Misinformation/Disinformation Disguised as Information About GNU General Public Licenses (GNU GPL) Usage
GPL-type licences (reciprocal obligations) remain dominant
IBM Mass Layoffs This Week Not Limited to North America, Red Hat Staff Terminated
Do not relocate for a company that sees you as nothing but a number or a "human resource"
 
Slopwatch: Brian Fagioli Targets "Linux" With LLMs, Google News Helps Blame "Linux" for Amazon WorkSpaces Flaws
Tonight's slopfest
Gemini Links 07/11/2025: Switzerland, k3s, and Privacy
Links for the day
Links 07/11/2025: Software Patents Squashed, Stock Markets Wobble Over Slop Uncertainties
Links for the day
A 19th Anniversary and High-Impact Exclusives
The end of 2025 will be very difficult for EPO management
The Register MS, Payroll First
GNU/Linux is a growing platform
Links 07/11/2025: US Government Shutdown Imperils Critical Functions, Slop in "AI" Clothing Debunked Some More, Bubble's Implosion Ongoing/Imminent According to Experts
Links for the day
Gemini Links 07/11/2025: No Goodbyes, Homelab, Mouse Keys / Pointer Keys
Links for the day
12 Years for Justice is Far Too Slow (and More People, Especially Women, Are Hurt)
Why do police departments and legal systems fail to protect women?
Freenode and irc.com Are Still Around
It emulates retro terminals
We Don't Compete, We Analyse and Report
Principles are so much better than money and they're something money can never acquire
Red Hat is Also Laying Off Staff in India
Red Hat is a dishonest company
Finding Recent Talks of Richard Stallman
We already have many pages, documents, and media files. Organising them and helping people find them is the next Big Task.
Richard Stallman First Speaker at Ethereum Cypherpunk Congress the Weekend After This Coming Weekend
He'll be speaking over the Net
Diversity at Red Hat
Remember to judge corporations by their actions, not some Web pages with words in them
First the Python Software Foundation (PSF) Attacked Its Most Productive Volunteers. Now It Attacks Its Funding Sources.
The U.S. National Science Foundation (NSF) rejected by PSF
News of Substance About the EPO's Substance Abuse (Cocaine)
EPO Cocaine Chronicles - link to archived BILD article and photos
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Thursday, November 06, 2025
IRC logs for Thursday, November 06, 2025
On Midlife Crises
Focus on the sabotage, not politics
Hallmark of Fake News: "Single-digit" (Percentage) and 1% Isn't the Same Thing
apparently "rebalancing" is the new layoffs euphemism
Links 07/11/2025: Patent Trolls Target Germany, Celebrities Visit Ukraine
Links for the day
Slopwatch: LinuxSecurity, Brian Fagioli, and Google News Boosting WebProNews (All Slopfarms)
Those slopfarms just saturate the Web with misinformation and mindless chaff
Techrights and Tux Machines at Over 40
19 years of Techrights and 21+ years of Tux Machines
Coming Soon: More Proof of Cocaine Use at Europe's Second-Largest Institution
Stay tuned
Entering Our 20th Year
...and still looking for answers
Mailing lists vs Discourse forums: open source communities or commodities?
Reprinted with permission from Daniel Pocock
Links 06/11/2025: "Component Abuse Challenge", Google Play Store Deemed Too Monopolistic
Links for the day
Microsoft and Microsoft GitHub (and Rust @ Microsoft GitHub) the Future of Ubuntu, They Want the Same for Debian
Ubuntu is not the place to find freedom
Richard Stallman Was Right About LLM-based Chatbots
the passing fad, LLM-based chatbots
IBM Has Not Been Good for IBM's Red Hat (Which Microsoft Also Attempted to Buy)
GAFAM or GIAFAM are not a force for good
Taking Back Control Over Technology We Purchase (Study, Modify, Enhance, and More)
"The war on general-purpose computing continues
Links 06/11/2025: EFF Wants New Executive Director, Microsoft's Azure Falls Over Again
Links for the day
All Set for Tomorrow
Techrights waves
The Corporate Media Carries on With Patently Phony and Misleading Narrative About IBM's Mass Layoffs
Instead of rightly alleging business failure or commercial (leadership's) weakness it is offloading blame to some mindless buzzwords
IBM Isn't Hiring Based on Age Groups. It Still Hires Based on Salary Expectations.
It is not about the skills available, it's about the expected cost of labour
Estimating the Scale of IBM's Mass Layoffs This Week
there is no denying that the IBM layoffs are vast
Telling Our Story as Victims of Online Abuse
This post will not mention any names
Claim That EPO Quotas Brought Corruption and Mischief to Europe's Second-Largest Institution
Nowadays corruption is the norm at the EPO and there is even rampant substance abuse among the people who run the Office
Rust's "Memory Safety" Talking Point Ought to be Discarded in Light of Fil-C
new memory-safe C/C++ compiler
Claim That IBM Has Another 8 Days to Lay Off 'Expensive' Staff
The consensus in comments we see is, IBM is a terrible place to work in, treatment of its workers is appalling, it's utterly foolish to relocate in an effort to retain a job at IBM, and it's foolish to join the company in the first place
Science Demands Facts, Not Dogma
Saying that restricted hardware is not secure hardware should be common sense
Site Anniversary is Tomorrow
The celebrations might delay our EPO series somewhat
Launching Techrights Search
New search interface and locally hosted back end
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Wednesday, November 05, 2025
IRC logs for Wednesday, November 05, 2025
Slopwatch: linuxbsdos.com, Linux Journal, LinuxSecurity, Brian Fagioli, and WebProNews
Either Google doesn't care about the integrity of Google News or it deems slop to be acceptable
Gemini Links 05/11/2025: Affirmation, GnuPG, and While Loops
Links for the day
Links 05/11/2025: Economic Trouble in France and US Bombing All Over the World Without Declaration of War or Congress Approving
Links for the day
IBM May Well Be Laying Off Over 13,500 and Up to 27,000 Staff This Week When It Says "Single-Digit Percentage of Our Global Workforce"
It's not yet possible to know how many people IBM gets rid of
Red Hat Staff Also Impacted by Latest IBM Layoffs With Focus on North America and Software, Infrastructure
After the bluewashing never expect to see news about "Red Hat layoffs", just as "Tivoli layoffs" aren't to be expected
Early Unverified Figures About Scale of Latest IBM Layoffs
the real scale of the RAs will remain elusive
Coming Soon: Part 4 About the EPO's Substance Abuse (Breaking Laws to Fake 'Production' and Profiting From Unlawful Monopolies)
Notice how quiet the EPO's management has been lately
How Techrights Search Works
Hopefully bots won't use it
For the Record: We Never Named Staff of the Law Firm That's Attacking Us, Except the One the Firm is Named After!
Just to affirm and be sure, I've used our new search facility
Techrights Became a Lot More Productive as a Result of Attacks on It
By default, it's safe to assume anything on the Web is garbage, especially in social control media
Unverified Rumours: IBM Cuts Will Continue Another ~10 Days, Managers Will Invite Those Impacted for 1-on-1 Meetings
Right now IBM likes diversity because with adoption of low-paid demographies it gets to pay workers less for the same work
Links 05/11/2025: Medicare Privatisation and "Breaker Box Economy"
Links for the day
Techrights Search Will Come Early
Maybe tomorrow
It Seems Like GNOME/IBM Don't Like Women and When Budget is Limited Only Women Take the Fall
Seems like a very patriarchal, GAFAM-controlled Foundation
"Last Day" as in "IBM Sacked Me" (Cruel Euphemisms)
"The entire design and research technical leadership at IBM was laid off in the past year, including this round"
analytics.usa.gov: Vista 11 Scarcely Used, GNU/Linux Increasingly Dominant (Microsoft Loses "Goodwill", Depletes Cash Equivalents, and Debt Soars)
"Total current assets" fell by more than 2 billion dollars in the past 3 months
Shadow Crew and Ads Disguised as Articles
That The Register MS runs articles that are paid-for fluff isn't unprecedented
Vista 11 "Market Share" Has Fallen This Month, Based on statCounter
The US government's own data shows the same thing this month
This is How Mainstream Media, Boosted or Parroted by Slopfarms, Spins IBM's Commercial Failure and Mass Layoffs as "AI"
Some say "software focus", but most just resort to buzzwords and blame-shifting hype
Resisting Misogynists
Rianne has already added close to 100,000 pages to this site
Starting November on a Strong Note
All in all, this month started well for us as we have good, accurate publications with considerable impact
Fake Retirements Help IBM Keep the Layoff Figures Down
Yesterday we read that it was quite cruel how IBM (or Red Hat) compelled staff to pretend to be happily leaving or "retiring" when the reality was, they had been pushed out with some "package"
Cocaine at the European Patent Office Now a Subject in YouTube, Media Will Revisit the Topic
"The Cocaine Patent Office" is no joking matter
Gemini Links 05/11/2025: "Wuthering Heights" and "Winter is Coming"
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Tuesday, November 04, 2025
IRC logs for Tuesday, November 04, 2025
2 Days Until Site Anniversary Party, Search Likely to Launch Same Day
We're now just two days away from the nineteenth anniversary of the site
Not Only Mass Layoffs at IBM But Complete Shutdowns "Amid A.I. Boom"
apparently about 10,000 layoffs, not counting those who got pushed out by PIPs and other means