Slashdot Mirror
Patch Tuesday Brought Windows 10 Ad Generator
jones_supa writes: Microsoft has been very aggressive on getting Windows 7 and 8 users to upgrade to Windows 10. The company has introduced a "Get Windows 10" system tray icon, moved the upgrade to "recommended" category in Windows Update, and even initiated the OS download automatically. The latest trick is almost comical: KB3139929 is an actual security update for Internet Explorer, but it also deploys a trojan horse, KB3146449, which is an advertisement generator for Internet Explorer. On computers not joined to a domain, it adds a blue banner when a user opens a new tab, saying "Microsoft recommends upgrading to Windows 10".
I don't use Windoze, but if I did, I would be even less likely to update now.
Nice timing of the article, right after the one about Opera's native ad blocking. I will update my Win 8 machine before the free Win 10 option goes away, but not much before.
Don't be left hanging! Get your viagra now!
Mickey and Taz's dumb faces staring back were added to my upgraded Windows 95 shell.
"but it also deploys a trojan horse"
A trojan horse is something that claims to be something that it isn't. Everything is very up front about what it is so long as you actually read what it is. It may be a bit underhanded, but it most certainly isn't a trojan horse.
Remember folks, hyperbole rarely helps your cause.
Add it to this list:
https://voat.co/v/technology/comments/853510
The fact that they are pushing it so hard tells you everything you need to know. This update benefits Microsoft in a very big way. Scratch that -- in a HUGE way. And if it benefits Microsoft in a huge way, take a wild guess how much it benefits you.
We don't even need to know the first thing about what the update actually does. All we need to know is that Microsoft is extremely determined to make it happen, to the point where they will actually try to trick you into it.
I never allow windows to automatically download anything. I go to the trouble of reading the updates despite microsoft saying shit like "recommended update" and "Fixes critical vulnerability in windows" without actually saying what the fuck it does. I click through and read the darn KB.
I didn't like M$ at the best of times but I appreciated windows 7, it works. It seems that they were dissatisfied with that and couldn't figure out how toi give people MORE VALUE so they decided to piss us off with shoving the damn thing down our throats.
We are sufficiently angry to tell M$ they can go fuck themselves and their stupid windows 10.
A 'singular oddity' is an event that cannot be explained and only happens when you are alone.
Why is Microsoft pushing Windows 10 so bloody hard? What financial incentive is there for this?
The simple solution is to use a different browser and delete the update.
I think it's because Microsoft's plan seems to be to use the home users as the beta testers for their "free" Windows 10, and they need lots of them to beta test it for their paying customers, which are businesses and enterprises.
It's annoying, certainly, but Trojan Horse? Come on. Dramatic much?
"Oh my God. This is terrible. This is the end of my Presidency. I'm fucked."; ~ Donald J. Trump
I've avoided Linux because of lack of software support for the things I use and the added learning curve.
I think the time has finally come for me to seriously look at using Linux at home.
I understand Microsoft needs to make money, I don't begrudge any 'decent' company from making a profit, thats what corporations are supposed to do.
But once I pay for software (and I have a full OEM license for Windows 7 Pro.), I should have any easy method to disable the nagging to upgrade to Windows 10.
All of this underhanded nagging to upgrade really aggravates me to the point that I'm now willing to investigate using an alternate OS.
Good Job Microsoft!
Okay, Microsoft has been injecting all sorts of stuff in their interest a the expense of their customers since Windows XP (WGA). We've had more "phone home" since WGA, and progressively more with each release. Windows 10 is the result of prodding a broom handle up our butts progressively deeper and seeing how deep it goes before we say "stop". The "telemetry" (really?!?) data collection, which MS admits you cannot turn off, and now ads in IE? We pay MS for this POS (well I don't touch windows 10 and legal firms and medical practices are aware of why they cannot go to Windows 10 to protect their clients), and MS find more ways to get money from us at the cost of our privacy. When do we say "enough is enough". Unless you are a gamer or have specific hardware (medical mainly), nobody needs MS Windows. Linux (Mint although hacked previously due to carelessness although fixed now), Elementary OS (for mac users), Debian (My favorite, can modify KDE to look like MS Windows/Mac), or even Ubuntu (think they still have a deal with Amazon on desktop searches which is why stopped using it but at least you can turn the amazon forwarding off). Any of these will serve any user. Even gamers may be happy with Linux as there has been an an explosion of games for linux (even 'AAA'...see Pillars of Eternity and Tides of Numunera for example). For those who like privacy I suggest the Tails distro (uses the Tor proxy network by default :D) . We all need to tell MS, enough is enough and we have choices.
"Imagination is more important than knowledge" - Einstein
So a patch for an obsolescent MS browser that puts a notification banner recommending to update to the latest MS environment is a "trojan horse?"
I don't know why I still read Slashdot, except as an example of what dumb looks like.
I am on the Win10 insider program on my laptop, which I use for surfing, etc. But all my data and real important use is on my desktop, and that's a Win 7 machine. As I approach the time limit for upgrading, I've decided to stay on Windows 7 on my main machine. I don't really see any benefits to Windows 10 that are that important (to me), and I hate the intrusive advertising in Windows 10. I don't really need my OS to serve me ads - lord knows there are enough ads everywhere else without my OS doing it, too. If and when Win 7 becomes unusable or unsupported, I'm seriously thinking desktop Linux, as there is enough software out there now that almost fully replicates what I need and use. Oh, and I'm using the GWX control panel to get rid of the Windows 10 nags in my Win 7 system. I really hate MS for doing this aggressive bit, and I'm throwing them the proverbial finger as much as I can - no Windows 10 on my main machine for me!
I will be moving to Linux before they shove Winscum 10 down my throat.
,,, or do I have to run it under Wine?
I've turned off automatic updates as being the greater security risk. Now no Microsoft-spam is getting through.
GWX Control Panel is your friend. http://ultimateoutsider.com/do...
(I have no interest in, or connection with this free utility).
I am sure that there are many other solipsists out there.
>The only way to get rid of the new advertising inside Internet Explorer 11 is to remove the security patch entirely.
Apparently Microsoft has resorted to the congressional tactic of bill riders under the guise of security.
I thought it was common knowledge: because windows 10 is a spy factory, and microsoft is salivating at the revenue they can get by selling your tracking data for profit.
oh the ironing is delicious!
the preceding comment is my own and in no way reflects the opinion of the Joint Chiefs of Staff
Or for those who RTFA, perhaps it DIDN'T include an ad spamming "trojan horse":
Before I ever use fucing winblows.
If you're using Win8 and have a touch screen, Win10 brings little to the table other than Cortana and much-enhanced spying, and some things (like Windows Mail if you actually use that) are broken that worked in 8. If you're using Win7, there are a few improvements under the hood but by the time you lock down enough of the spying to have reasonable privacy it works like Win7 but with a slighly broken user interface (unless you like tiles on the start menu and extra keystrokes for everything). On the plus side, some old software that was a bit fragile in 7 (and often didn't work at all in 8 without serious demon tweaks) is now pretty stable. Go figure.
This blue banner has been popping up on a few of our business clients' 2012 servers for a while now. So, i don't think I buy the 'not on a domain' bit. Also, upgrade to win 10 on a server 2012 box? wtf MS?
Up till now MS has tried its best honestly within the so called rules. Now they have deceptively added advertising to a SECURITY UPDATE . Lawmakers, FTC please take note.
Jack of all trades,master of none
This shit is going to steer me to a Mac, or maybe push me to a return to Linux.
MS has become more arrogant than Apple and Google put together, and that is saying something.
Full disclosure, I like apple, and frankly almost despise google. I think I have a new hate sink.
The "Civilized World" jumped the shark ca. 1973.
I never got any update notice, but then I've done some things to block the Win 10 updates.
But keep pushing Microsoft- I've got Linux Mint already installed on my laptop (dual boot) and it won't take but about 15 minutes to install it on my desktop too.
The first time I see anything related to Windows 10 on my PC, you're toast. Any conversion, any forced "upgrade", anything like that...and that'll be the last time I run Windows on my PC.
It'll take ~10 minutes to backup and offload my most recent data and 15 minutes to load Mint, and we'll be done. Get it through your heads- I like Win 7, I do NOT want Windows 10, period.
So yeah, just keep pushing and you'll push me right off your OS.
Just cruising through this digital world at 33 1/3 rpm...
(I have no interest in, or connection with this free utility).
Sorry, that's ambiguous. I meant that I have no financial interest; I don't stand to gain from its use.
But in the several months since I installed it, is has done a great job of completely shielding me from all the nuisance messages about Windows 10.
I am sure that there are many other solipsists out there.
Microsoft updates now appear to be equivalent to malware.
I'm sorry to see Microsoft being so petty as to do something like this.
I don't think it's stable enough yet.
She was like chocolate when she drank... semi-sweet at first and then increasingly bitter.
Wow, how low we have sunk when Vista looks attractive, hehehe.
Seven puppies were harmed during the making of this post.
Bing is the real reason for this push.
> Around 30% more Bing search queries per Windows 10 device
> vs. prior versions of Windows.
https://blogs.windows.com/windowsexperience/2016/01/04/windows-10-now-active-on-over-200-million-devices/
If people use a MS account and Cortana, all the searches go to bing.
Even I as a Linux-User think that google could use some competition in the search business, so I sometimes use bing.com, but never for long, because the results are so much crappier than google.
People complain that Google's results used to be better, and that may be true, but they're still much better than bing. Using bing you do all searches twice - first in bing, and then again, in gg.
So, Microsoft is punishing people again for using IE instead of Chrome? Great strategy, Microsoft!
And all of this can be yours for the low, low price of constant surveillance (shared with any TLA that asks) and unblockable phone-homing.
Act now!!
1. Form a non-profit org whose purpose is to remind MS that they serve us, not the other way around
1a. Everybody send in all your money to make 2 and 3 happen
2. Create a superPAC to defeat pro-MS candidates. How-to:
https://www.washingtonpost.com/blogs/in-the-loop/wp/2014/04/10/how-to-start-a-super-pac-because-you-can/
3. Hire a lobbyist and get pro-user legislation written. How-to:
http://lobbying101.wordpress.com/recommendations/how-to-hire-a-lobbyist/
Or we can keep bitching...
I generally help pile on the Microsoft hate along with the rest of slashdot, but I'd like to point out that security and privacy are two distinct concepts. You've listed privacy implications that have little bearing on security. Your third point is the only one that is a potential security hole, but even that's a bit of a stretch, as the ads displayed by Microsoft are likely vetted quite a bit more thoroughly than what you see with a typical ad network.
Chuuch. Preach. Tabernacle.
Yes, this is the line they should never, ever have crossed.
You don't call something non-security a security update. Ever. You just don't.
I already knew a lot of people who haven't been routinely installing Windows updates for a long time because of all the junk Microsoft have been throwing in as "recommended". But at least until this week you could still trust that you should install security updates.
The scale of screw-up that crossing this line represents in terms of Microsoft's remaining credibility is staggering.
If you disagree, post your argument. (-1, Overrated) isn't your personal censorship tool for views you don't like.
i have windows vista.. the BEST and LEAST ANNOYING windows version that hasn't been EOLd.
The only way in which Vista is better than Win7 is that they haven't bothered, to the best of my knowledge, to push telemetry out to it like they have 7. It has a bunch of serious performance problems, though, especially its ridiculous memory use.
"You're right," Fisheye says. "I should have set it on 'whip' or 'chop.'"
I have used windows since v3.0 but stopped at 7. It's amazing how Microsoft is pushing their users away. I hate it and want to use Windows but I cant stand the OS anymore. At work my company is ditching everything MS and I asked for a Macbook Pro (ok so far but has it's own issues) and at home I'm looking at Mint or Ubuntu. Bye bye Microsoft.
I realize they've probably all got this sort of thing turned off across all of their deployments, but I can't imagine anyone in the industry not taking this as a sign to consider alternatives to MS
PS: I don't reply to ACs.
It isn't a security patch, even though it is labeled as one.
No one should have to install software to avoid installing software.
CAPTCHA: cleanup
I have Windows 7 and Windows 8.1 desktops that I use minimally. I have turned off updates on both after running a long script that would turn off the Windows 10 crap but Microsoft keeps coming up with more so disabling updates is the solution. I will eventually upgrade one to W10 so that I'm familiar with it but it will still be minimally used. My MacBook Pro is the machine that I use for about 95% of work and play now. A friend of mine did get the forced W10 update and he's annoyed because it broke some stuff. I told him that it should have given him a chance to stop and that he should be able to rollback the upgrade - not sure what he's going to do.
vista has NO telemetry backported, vista has NO upgrade path to windows 10, vista has NO windows 10 upgrade offers, vista has NO kb971033, vista has NO cloud integration, vista has NO ms account integration. vista has NONE of the shit features microsoft has been pushing starting (yes) with windows 7. vista is a mature and yes, STABLE, version. it had growing pains initially, true, but every version does. memory issues? dont see any here. now-ancient dual core athlon and 2gb ram. vista failed because manufacturers sold cheap computers that had no business running vista or newer in the first place, vista failed because manufacturers were late getting support and drivers for their products. vista failed because people expected their piece of shit 10 year old hardware that ran xp to run vista equally as well. vista itself is AWESOME once set up. the computer i am typing on now was brand new preloaded with vista and has run without issue, without bugs, without crashes, without any reinstalls, and without any problems whatsoever since 2 november 2006. it sleeps and hibernates and wakes without issues, it serves as a print and file 'server' non stop without issue, it runs our office and firefox and photo software no problem. it has even served as a makeshift ftp server for awhile, among other less-traditional tasks. it even plays games, ffs, as well as any post-xp windows version would with only 2gb ram. i bet you don't have a computer running the same install of a supported windows that's older than mine. vista's ONLY downside is that it is nearing EOL itself.
Wow, how low we have sunk when Vista looks attractive, hehehe.
Vista was always attractive - Windows 7 was pretty much a dumbed down Vista with fewer security warnings and less aggressive caching, to better support people who don't care and don't want to see warnings, had lower-end hardware (for the time that Vista came out), or rebooted often enough that aggressive caching caused more of a slowdown than speedup.
What's scary is that Windows Me looks good compared to Windows 10... Heck, even Clippy is better than the ad-tiles!
It's 2016; the planet is hotter than ever; self-driving cars and a manned mission to Mars are around the corner ... and yet, on Slashdot, it's still 1995 and you're all still bitching about Windows lock-in and wondering whether, maybe, you could try installing that new Linux thang.
For Christ's sake, wake up and get a life people! Just stop using the corporate tool made by the corporate tools, and do something interesting with your computing and your lives.
While you're all freaking out about this, you do realise a) Internet Explorer always opened with an AD, it's called MSN.
And of course b) This affects Windows 7 and 8 users who use Internet Explorer regularly. So that's like, what, 4 people?
Personally, this adds motivation to my attempts to get off Winders I have Mint up on the new machine, just figuring out what to do about my Windows-only apps. (A few don't work under Wine.)
"So why don't you just upgrade? It's free, you know." Yeah, I know. But I don't want to spend time trying to figure out where they've hidden the features I use this time, and all the tricks to make it less annoying. If I'm going to go through that much trouble, I might as well look at alternate operating systems.
And just as a personal thing, I don't like "live tiles". I think that was a huge mistake. At least with widgets, you had to choose to use them. They didn't just pop up all over the screen.
Oliver's law of assumed responsibility: If you're seen fixing it, you will be blamed for breaking it.
An Active Directory user got the Windows 10 offer. I decided it was time to see if I could disable the offer through Group Policy. I found instructions pretty easily. Download the latest ADML and ADMX files and a new option to turn off the offer should appear. I did that and the option wasn't there.
Turns out Microsoft had removed this option in the latest files. I had to find a sweet spot of new enough to know about Windows 10 upgrade offer, but not so new that the option was removed. Luckily our parent company had the proper files.
I turned off automatic updates many moons ago, ever since they started releasing a rash of kernel updates which borked the OS.
Since then i've waited at least 1 week after patch tuesday and then done a google search for the KB of every single important updates (and ignored the recommended ones) to ensure not only the safety of the patch but also that it doesn't contain win10 nagware.
It's really not as time consuming as it sounds; maybe 10 minutes once a month.
MS has created a huge incentive for more people to try Linux. Increasing the number of desktop Linux users will attract more commercial software which will eliminate the vendor lock-in that MS has enjoyed.
Friends and family were disgusted by Windows 8. Mostly, they just moved to Android tablets and stopped using their laptop/desktop Windows for all but that rare times it is needed. It is a little odd to see my mother using her Android tablet for just about everything but it works for her. They will even do things on the Android smart phones that used to require getting out their laptops. As someone that grew up when many people did not have a PC at home, and long before Android came along, it is amazing just how much general computing is being done without the need for a laptop or desktop computer.
I've been using Linux as my main OS for around 15 years, with Windows dual boot for some games. There has been a lot more interest from friends and family in Linux, particularly when they see me using KDE and how familiar it is to the good old Windows that MS ruined. For those used to older Windows versions there is a learning curve and putting that effort into learning Linux requires no more effort.
MS seems to be doing everything possible to kill Windows and they have my support in their mission.
Listen to this guy.
Debian is archaic shit. CentOS and Scientific are NOT FREAKING DESKTOP DISTRIBUTIONS.
If you unfortunately must run Linux on the desktop, for the love of all that is holy, use Mint.
Do not go gentle into that good night,
Old age should burn and rave at close of day;
Rage, rage against the dying of the light.
Though wise men at their end know dark is right,
Because their words had forked no lightning they
Do not go gentle into that good night.
Good men, the last wave by, crying how bright
Their frail deeds might have danced in a green bay,
Rage, rage against the dying of the light.
Wild men who caught and sang the sun in flight,
And learn, too late, they grieved it on its way,
Do not go gentle into that good night.
Grave men, near death, who see with blinding sight
Blind eyes could blaze like meteors and be gay,
Rage, rage against the dying of the light.
And you, my father, there on the sad height,
Curse, bless, me now with your fierce tears, I pray.
Do not go gentle into that good night.
Rage, rage against the dying of the light.
https://www.flickr.com/photos/...
It's real. Here is a screenshot of the trojan horse in action. I was shocked when I first saw it.
https://www.flickr.com/photos/...
It's real. Stop denying it.
In other news: Qubes 3.1 was released today. Get it at https://www.qubes-os.org/
What is Qubes OS?
Qubes is a security-oriented operating system (OS). The OS is the software which runs all the other programs on a computer. Some examples of popular OSes are Microsoft Windows, Mac OS X, Android, and iOS. Qubes is free and open-source software (FOSS). This means that everyone is free to use, copy, and change the software in any way. It also means that the source code is openly available so others can contribute to and audit it.
Why is OS security important?
Most people use an operating system like Windows or OS X on their desktop and laptop computers. These OSes are popular because they tend to be easy to use and usually come pre-installed on the computers people buy. However, they present problems when it comes to security. For example, you might open an innocent-looking email attachment or website, not realizing that you’re actually allowing malware (malicious software) to run on your computer. Depending on what kind of malware it is, it might do anything from showing you unwanted advertisements to logging your keystrokes to taking over your entire computer. This could jeopardize all the information stored on or accessed by this computer, such as health records, confidential communications, or thoughts written in a private journal. Malware can also interfere with the activities you perform with your computer. For example, if you use your computer to conduct financial transactions, the malware might allow its creator to make fraudulent transactions in your name.
Aren’t antivirus programs and firewalls enough?
Unfortunately, conventional security approaches like antivirus programs and (software and/or hardware) firewalls are no longer enough to keep out sophisticated attackers. For example, nowadays it’s common for malware creators to check to see if their malware is recognized by any popular antivirus programs. If it’s recognized, they scramble their code until it’s no longer recognizable by the antivirus programs, then send it out. The best antivirus programs will subsequently get updated once the antivirus programmers discover the new threat, but this usually occurs at least a few days after the new attacks start to appear in the wild. By then, it’s typically too late for those who have already been compromised. In addition, bugs are inevitably discovered in the common software we all use (such as our web browsers), and no antivirus program or firewall can prevent all of these bugs from being exploited.
How does Qubes OS provide security?
Qubes takes an approach called security by compartmentalization, which allows you to compartmentalize the various parts of your digital life into securely isolated virtual machines (VMs). A VM is basically a simulated computer with its own OS which runs as software on your physical computer. You can think of a VM as a computer within a computer.
This approach allows you to keep the different things you do on your computer securely separated from each other in isolated VMs so that one VM getting compromised won’t affect the others. For example, you might have one VM for visiting untrusted websites and a different VM for doing online banking. This way, if your untrusted browsing VM gets compromised by a malware-laden website, your online banking activities won’t be at risk. Similarly, if you’re concerned about malicious email attachments, Qubes can make it so that every attachment gets opened in its own single-use, “disposable” VM. In this way, Qubes allows you to do everything on the same physical computer without having to worry about a single successful cyberattack taking down your entire digital life in one fell swoop.
Quisque verborum suorum optimus interpres...
...even if Microsoft gave the full retail version away for free. Oh, wait. They are giving it away for free. And still people want to keep their nice Advanced Desktop User OS a/k/a Win 7.
Instead of trying to push W10 down our throats, why not bring back the Aero windowing environment complete with the "old" tools. So on tiny-screen finger-painting Surface tablets they can use W10 as it is now, and on our Mouse-And-Keyboard-And-Large-HiRes-Monitor we can use something optimized for that. "Desktop mode" in W10 is a joke (even with Classic Shell it still is aweful on a large monitor).
When the copyright term is "forever minus a day", live every day like it's the last.
Microsoft should take heed. If I am forced to do something I will rebel and fight back with a vengence. If they do what they did with Windows 7 and created a great product, I will buy into it. Windows 10 is crap and violates the honey vinegar accord. If they fixed it so it did not look like a toy for a ten year old and changed it so you could make it look like windows 7 which props to M$ is pretty damn amazing, then I would upgrade. As it stands I would have to say they can suck my balls if I am ever going to downgrade to that piece of crap.
I think this is worse than a Trojan horse because it violates what little trust M$ gained with Windows 7 (I don't acknowledge 8). At least Trojans are usually flying a pirate flag so you know what to expect. Now Microsoft has lowered themselves to Piracy and lost all trust and respect I managed to garner for them. It takes years to gain trust and only one ass hatted dumb move to lose it all.
Windows 10 is a poor quality operating system. It's surprising how many people appear not to have realised this.
Bill expects to go to Hell. Think he and co. give a rats ass about the public?
distrowatch.com
Microsoft is now an indian company, it's doing indian things. You know, the needful.
Folks complain and whine like its Hotel California - fact is you *really* can check out anytime you like, leave, and kill the beast on the way out the door.
shoulda, woulda, coulda...
If they (including I) hadn't installed Windows in the first place they wouldn't have the problem (IMHO)
I am sure that there are many other solipsists out there.
You fucking assholes. You are now actually worse then a lot of malware companies.
And this is why Microsoft Windows Updates are no longer trusted in my world.
It ought to be made illegal to refer to accepting a fundamentally new TOS as an "upgrade".
Alternatively, it ought to be possible to click "I do not accept" on the new TOS and thus having made this tick mark never to see another "upgrade" suggestion that doesn't offer you a TOS you might actually accept.
Had my wife's early windows 7 laptop running unused for a week (no one touched it). Then I press any key to bring the screen up and... Windows 10 was installing itself on the machine without a single question or prompt! That's a bit more than a splash screen! Thanks Microcrap!