this post was submitted on 21 Apr 2024
471 points (95.6% liked)

Technology

55763 readers
2790 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots

founded 1 year ago
MODERATORS
L3s
[email protected]
[email protected]
[email protected]
enu
[email protected]
L4s
471
Why Microsoft is a national security threat (www.theregister.com)
submitted 2 months ago by kinther to c/technology
99 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 24 points 2 months ago (1 children)

I cannot disclose any details but this article vastly undersells the risk and how exposed the US is. It is definitely goes well beyond government exposure.

[–] [email protected] 21 points 2 months ago (2 children)

It's not like theres's an NSA backdoor key called NSAkey in windows or something...

[–] [email protected] 24 points 2 months ago (2 children)

Windows is not the problematic Microsoft product. Not even close. If you understood how much of the US infrastructure and controls are consolidated under Microsoft cloud services, you'd never sleep again. Cloud was fine back when it was a product catering small and medium companies but when large corporations started migrating their critical infrastructures to cloud services to offload responsibilities, we really went off into the weeds.

[–] [email protected] 11 points 2 months ago

Not only cloud infrastructure, tons of industrial automation devices are more or less open on the Internet. Best case that's just a few minutes downtime in a factory, worst case someone fries the grid and destroys water treatment plants.

And even the actual applications being written for the government aren't that great. The lowest bidder gets the contract, and security is really easy to cheap out on, if you're doing just enough to not be legally liable - which isn't hard.

The older I get and the more insights in the inner workings of the technical infrastructure I get, the more I'm surprised we're not actively collapsing right now. It's scary how abysmal security is and it's scary how unprepared society is. Just as a hint: the European power grid spans the entire EU, Balkans, Turkey, Ukraine. There's no plan how to restart the grid, if it shuts down entirely. None. Complete terra incognita.

[–] doublejay1999 6 points 2 months ago (2 children)

No need to be quite so cloak and dagger mate, it fairly obviously to any one who pauses to think.

People have been calling out the problems of corporate oligarchy for more than a decade. This is merely part of that .

It’s systemic risk, not merely technical

[–] [email protected] 5 points 2 months ago (1 children)

He's not being cloak and dagger. He's an old guy (double spacer spotted) who works in the military or private sector under NDA and can't talk about it.

Or he's LARPing. But the double spaces make me believe him.

[–] [email protected] 6 points 2 months ago (1 children)

Spot on. 51yo. Corporate. NDA'd to hell and back.

[–] [email protected] 0 points 2 months ago

Didn't stop Snowden. :)

[–] [email protected] 1 points 2 months ago* (last edited 2 months ago)

its not cloak and dagger, its 'whatever you do, don't open the breaker box. you will die.'

[–] [email protected] 5 points 2 months ago

Forgot about that one. Let's share what Wikipedia has on it : https://en.wikipedia.org/wiki/NSAKEY