Ha! Maybe the gods are just happy that Steve Ballmer’s desk no longer resides on the Microsoft campus. Then again, maybe the boys from Redmond…
Posts published in “Browsers”
FOSS Week in Review
Is Microsoft reading your Hotmail?
Last week we learned of the arrest of Alex Kibkalo, a Microsoft employee who’s charged with leaking an unreleased version of Windows 8 to a French blogger. According to Wired, during the course of an internal investigation in Redmond, an unidentified source approached Steven Sinofsky, who was then president of Microsoft’s Windows Division.
“The source gave Sinofsky a Hotmail address that belonged to the French blogger (also not named) and said that the blogger was the person who had received the leaked software. Microsoft had already been interested in the blogger, but apparently, after the tip-off, the company’s security team did something that raised alarm bells with privacy advocates. Instead of taking their evidence to law enforcement, they decided to search through the blogger’s private messages themselves. Four days after Sinofsky’s tip-off, Microsoft lawyers ‘approved content pulls of the blogger’s Hotmail account,’ the court filings state.
“By trolling through the Hotmail email messages and MSN Messenger instant message logs, Microsoft learnt how Kibkalo and the blogger pulled off the leak, says Federal Bureau of Investigation special agent Armando Ramirez III, in an affidavit filed in connection with the case. Microsoft handed over the results of its investigation to the FBI in 2013, and Kibkalo was arrested on Wednesday.”
This, of course, created quite a stir among privacy advocates. So much so that the folks in Redmond on Thrusday announced a change of policy when it comes to riffling through people’s Hotmail accounts. They’re still going to do it, but in the future the company will publish stats regarding its breaking into people’s free Hotmail accounts. In other words, we’ll know just how much they do it.
FOSS Week in Review
Sixteen-year-old wrote the code for Target breach
The press calls him a “nearly seventeen-year-old” and he’s reported to be one of the people behind the malware used to compromise credit card data at Target and other locations. By our way of counting, “nearly seventeen” means he is sixteen or, like the show tune says, “sixteen going on seventeen.” He lives in Russia and is said to be the author of the BlackPOS malware that was used against Target and might have been used against Neiman Marcus.
This info comes from Los Angeles based cyber-intelligence firm IntelCrawler, which says it’s also traced six additional breaches to BlackPOS. As noted on MarketWatch, despite authoring the malware, the kid is just a small fry in this affair.
Once upon a time there was a browser called Netscape…
Back in the days before the release of Windows 95, just as the public was discovering the Internet as an alternative to private networks such as Prodigy and CompuServe, Netscape was the bomb. In those days, Microsoft didn’t supply any method for surfing the Internet, so people visited their local Egghead store, or other software outlets, to buy a shrink wrapped version of Netscape on floppy disks, which opened up a whole new world to computer users.
Christine Hall has been a journalist since 1971. In 2001, she began writing a weekly consumer computer column and started covering Linux and FOSS in 2002 after making the switch to GNU/Linux. Follow her on Twitter: @BrideOfLinux
I wanted to be able to tell you that despite rollApp being in beta it’s pretty much ready to go. Unfortunately, I can’t, because it isn’t. There are some limitations that make using the site a deal breaker for most users. When the developers get those worked out, however, rollApp will be ready to be a major player in the world of online apps.
For those who don’t know, rollApp is a startup that intends to offer in-the-browser online versions of many favorite applications. Already they have an impressive roster of apps up and running–such as the entire LibreOffice suite, Gedit, Scribus, Inkscape and Darktable. Except for some limitations, they work great–you’d hardly know you weren’t using an application that’s sitting on your own hard drive.
However, the limitations, until fixed, render the online apps unusable for most real-life purposes.
Christine Hall has been a journalist since 1971. In 2001, she began writing a weekly consumer computer column and started covering Linux and FOSS in 2002 after making the switch to GNU/Linux. Follow her on Twitter: @BrideOfLinux
Now that the celebrating is out of the way, I thought it might be time to take a look at some of the stories we covered on FOSS Force this year.
1. The NSA. The biggest story to come down the wire this year undoubtedly had to do with Edward Snowden’s revelations about the National Security Agency’s bag of dirty tricks. Even those of us who have long understood that the Internet isn’t necessarily a place to expect privacy were surprised at how deeply the NSA has managed to reach into the Internet. Odds are, if you’ve been using social networks, everything you’ve posted is now on file with the NSA. What’s worse, every email you’ve sent probably has a copy resting on a NSA server somewhere.
Christine Hall has been a journalist since 1971. In 2001, she began writing a weekly consumer computer column and started covering Linux and FOSS in 2002 after making the switch to GNU/Linux. Follow her on Twitter: @BrideOfLinux
FOSS Week in Review
FBI claims U.S. computers breached by Anonymous
In an exclusive story published Saturday by Reuters, the FBI has claimed Anonymous has managed to hack into U.S. government computers and steal sensitive data. What’s more, they believe these intrusions have been going on for at least a year.
“The hackers exploited a flaw in Adobe Systems Inc’s software to launch a rash of electronic break-ins that began last December, then left “back doors” to return to many of the machines as recently as last month, the Federal Bureau of Investigation said in a memo seen by Reuters.
“The memo, distributed on Thursday, described the attacks as ‘a widespread problem that should be addressed.’ It said the breach affected the U.S. Army, Department of Energy, Department of Health and Human Services, and perhaps many more agencies.
“Investigators are still gathering information on the scope of the cyber campaign, which the authorities believe is continuing. The FBI document tells system administrators what to look for to determine if their systems are compromised.”
FOSS Week in Review
Swiss cloud with, presumably, no holes
Back when the Edward Snowden brouhaha first began, we said that this was going to have serious repercussions on the tech sector here in the United States, especially after it became evident that Microsoft was actively working with the spooks by allegedly designing back doors into their operating system and keeping federal intelligence agents informed about unpatched security holes that could be used against foreign governments and “terrorist,” which now days seems to be everyone who doesn’t work for the NSA, FBI or CIA.
Brazil is already spending big bucks in an effort to make sure that no Internet cable entering their country goes anywhere near the US of A and is working to pass laws to make sure all Brazilian businesses use only servers located in-country. Similar efforts are underway in Europe, most notably in France and Germany.
Now the frugal Swiss are jumping on board, and they rightfully intend to profit from our stupidity by taking advantage of their strong privacy laws.
Things aren’t going well for Matt Kruse, the developer of the über-popular Social Fixer browser extension which gives users control over how their Facebook pages and news feeds appear to them. It works within the browser and doesn’t affect the experience of anyone on Facebook other than the user. With it, status updates can be tabbed, items can be filtered, and it allows hiding or blocking sponsored stories and other advertising that runs through the news feed.
The last we heard, about three weeks ago, Zuckerberg’s people had taken down Social Fixer‘s popular Facebook page, a place for users to testify for the app and seek help and for Mr. Kruse to make announcements about updates and so forth. FB was claiming it removed the page due to reports of spamming, but was offering no way for him to plead his case.
Christine Hall has been a journalist since 1971. In 2001, she began writing a weekly consumer computer column and started covering Linux and FOSS in 2002 after making the switch to GNU/Linux. Follow her on Twitter: @BrideOfLinux
FOSS Week in Review
Google wants to do away with Flash?
The day after our own Christine Hall expressed the opinion that Adobe’s Flash “isn’t going to go away anytime soon,” mainly because the Google ad business is hooked on it, we find that the Mountain View company might very well be trying to push Flash out the door. On Tuesday, CNET reported that Google has released a free beta of Google Web Designer, a tool for building animated HTML 5 ads.
Last week we learned that in the near future, browser plugins won’t automatically work out of the box in Chrome and Firefox. Instead of running automatically whenever a website calls for a plugin function, they’ll be “click to play,” meaning the user will have to give permission for the plugin to run with each instance. According to Google and Mozilla, this new rule will apply to each and every browser plugin in existence on the entire planet, save one. Flash will still run automatically, requiring no prompt from the user. With Flash, it’ll be business as usual.
This has the look and smell of a business play all the way through, although that might not be immediately evident when reading what ad giant Google and open source Mozilla have to say. At first glance, their reasoning makes sense. Flash is just too darn ubiquitous. It’s everywhere; buried in everything. Including Flash in “click to play” would put too much of a burden on the user.
Christine Hall has been a journalist since 1971. In 2001, she began writing a weekly consumer computer column and started covering Linux and FOSS in 2002 after making the switch to GNU/Linux. Follow her on Twitter: @BrideOfLinux