Bonum Certa Men Certa
Links 2/1/2015: AMD Catalyst Benchmarks, Krita Receives Artist Choice Award | Thousands of Child Rape Photos Traded Out of Bill Gates' Mansion

Microsoft Does Not Want to Make Windows Secure

"Our products just aren't engineered for security."

--Brian Valentine, Microsoft executive



Barbed wire



Summary: Windows is not designed to be secure and Microsoft is not even trying to make it secure when advised on how to make it so

YESTERDAY we wrote about the latest extensive evidence that Skype is a spy. Microsoft knows damn well that it is being used to spy on people, but it does not bother hardening the proprietary software program or even fix critical bugs that facilitate wiretapping (e.g. through weak encryption). Security is simply not the goal.



"Security is simply not the goal."Today we learn that the NSA, which Microsoft tells about flaws before even fixing them (hence providing the NSA with back door access), sure is enjoying access to the latest version of Windows even if it is fully patched and up to date. For several months now Microsoft just didn't bother patching the holes. Google, which banned Windows for internal use but remains negatively affected by Google users who are on Windows-running PCs, shows Microsoft a serious flaw (local back door) in the very latest Windows. Microsoft just simply does nothing for three months (except showing the NSA, as usual), whereupon Google increases pressure on Microsoft: [via]

Google has made public the details of a security vulnerability in Windows 8.1 a mere 90 days after disclosing it to Microsoft, sparking debate over the wisdom of the online giant's Project Zero security initiative.

The bug, which was privately reported to Microsoft in September, can potentially allow a logged-in user to execute code on Windows 8.1 machines with administrator privileges.


What we learn from this is that Google tried responsible disclosure, as was the case when the OpenSSL flaw was discovered by Google, well before a Microsoft-connected firm gave it a name, a logo, and very irresponsibly sent out the word, even before OpenSSL's own site was patched.

Google waited patiently for months, but Microsoft is simply not interested in the security of Windows. Those who are using Windows are not able to patch the flaw themselves because it is proprietary software. It serves to show why every company -- not just individual -- should shun Windows where security is a priority (it's a top priority everywhere). Sony is being severely hit by a doxing problem that reportedly started with cracking of Microsoft Windows.

Links 2/1/2015: AMD Catalyst Benchmarks, Krita Receives Artist Choice Award | Thousands of Child Rape Photos Traded Out of Bill Gates' Mansion

Recent Techrights' Posts

Web Monopolist, Google, 'Pulls a Microsoft' by Hijacking/Overriding the Name of Competitor and Alternative to the Web
Gulag 'hijacking' 'Gemini'
 
CNN Contributes to Demolition of the Open Web
Reprinted with permission from Ryan Farmer
Eben Moglen on Encryption and Anonymity
The alternate net we need, and how we can build it ourselves
Yet More Microsofters Inside the Board of Mozilla (Which Has Just Outsourced Firefox Development to Microsoft's Proprietary Prison)
Do you want a browser controlled (and spied on) by such a company?
IRC Proceedings: Monday, December 04, 2023
IRC logs for Monday, December 04, 2023
GNU/Linux Now Exceeds 3.6% Market Share on Desktops/Laptops, According to statCounter
things have changed for Windows in China
Over at Tux Machines...
GNU/Linux news
Links 05/12/2023: Debt Brake in Germany and Layoffs at Condé Nast (Reddit, Wired, Ars Technica and More)
Links for the day
[Meme] Social Control Media Giants Shaping Debates on BSDs and GNU/Linux
listening to random people in Social Control Media
Reddit (Condé Nast), Which Has Another Round of Layoffs This Month, Incited People Against GNU/Linux Users (Divide and Rule, It's 2003 All Over Again!)
Does somebody (perhaps a third party) fan the flames?
Who Will Hold the Open Source Initiative (OSI) Accountable for Taking Bribes From Microsoft and Selling Out to Enable/Endorse Massive Copyright Infringement?
it does Microsoft advocacy
Using Gemini to Moan About Linux and Spread .NET
Toxic, acidic post in Gemini
Links 04/12/2023: Mass Layoffs at Spotify (Debt, Losses, Bubble) Once Again
Links for the day
ChatGPT Hype/Vapourware (and 'Bing') Has Failed, Google Maintains Dominance in Search
a growing mountain of debt and crises
[Meme] Every Real Paralegal Knows This
how copyright law works
Forging IRC Logs and Impersonating Professors: the Lengths to Which Anti-Free Software Militants Would Go
Impersonating people in IRC, too
IRC Proceedings: Sunday, December 03, 2023
IRC logs for Sunday, December 03, 2023
GNU/Linux Popularity Surging, So Why Did MakeUseOf Quit Covering It About 10 Days Ago?
It's particularly sad because some of the best articles about GNU/Linux came from that site, both technical articles and advocacy-centric pieces
Links 04/12/2023: COVID-19 Data Misused Again, Anti-Consumerism Activism
Links for the day
GNOME Foundation is in Reliable Hands (Executive Director)
Growing some good in one's garden
Links 03/12/2023: New 'Hey Hi' (AI) Vapouware and Palantir/NHS Collusion to Spy on Patients Comes Under Legal Challenge
Links for the day
'Confidential Computing'? More Like a Giant Back Door.
CacheWarp AMD CPU Attack Grants Root Access in Linux VMs
IRC Proceedings: Saturday, December 02, 2023
IRC logs for Saturday, December 02, 2023
Links 03/12/2023: CRISPR as Patented Minefield, Lots of Greenwashing Abound
Links for the day