Tag Archives: DDOS

July 31, 2024 · 16:40

It was never rocket science

Yup, that is the gist of it. And it seems that people are starting to wake up. You see the biggest issue I have had with any mention of AI, is that it doesn’t (yet) exist. People can shout AI on every corner, but soon the realisation comes in that they were wrong all the time will hurt them, it will hurt them badly. And this is merely a sideline to the issue. The issue is Microsoft and lets get through some articles.

1. Microsoft says cyber-attack triggered latest outage
The first one is (at https://www.bbc.com/news/articles/c903e793w74o) where we see “It comes less than two weeks after a major global outage left around 8.5 million computers using Microsoft systems inaccessible, impacting healthcare and travel, after a flawed software update by cybersecurity firm CrowdStrike. While the initial trigger event was a Distributed Denial-of-Service (DDoS) attack… initial investigations suggest that an error in the implementation of our defences amplified the impact of the attack rather than mitigating it,” said an update on the website of the Microsoft Azure cloud computing platform.” The easiest way of explaining this is to compare Azure to a ball. A foot ball has (usually) 12 regular pentagons and 20 regular hexagons. They are stitched together. Now under normal conditions this is fine. However software is not any given shape, implying that a lot more stitches are required. Now consider that Microsoft 365 is used by over a million corporations. Now consider that a lot of them do not use the same configuration. This implies that we have thousand of differently stitched balls and the stitches is where it can go wrong. This is where we see the proverbial “the implementation of our defences amplified the impact of the attack rather than mitigating it” Microsoft has been so driven by using it all, that they merely advance the risk. And it doesn’t end here. CrowdStrike is another example. We see the news and the fake one person claiming responsibility for it. Yet the reality is that there is a lot more wrong than anyone is considering. These two events pretty much prove that Microsoft has policy and procedure flaws. It is easy to blame Microsoft, but the reality is that we see spin and the trust in Microsoft is pretty much gone. People say “Microsoft’s cloud revenue was 39.3% higher”, yes this is the case, and considering that Amazon was originally a ‘bookshop’, so they went against the larger techies like IBM and Microsoft and they got 31% of the global market share. Not bad for a bookshop. And the equation gets worse for Microsoft, these two events could cost them up to 10% market share. In which direction these 10% go is another matter. AWS is not alone here. 

I was serious about not letting Microsoft near my IP. I had hoped that Amazon would take it (they have the Amazon Luna) but it seems that Andy Jesse is not hungry for an additional 5 billion annually (in the first stage). 

And as Microsoft adds more and more to their arsenal these problems will become more frequent and inflicts damage on more of their customers. Do I have evidence? No, but it wasn’t hard and my example might give you the consideration to ponder where you could/should go next. 

2. Microsoft Earnings: Stock Tanks As AI Business Growth Worse Than Expected
In the second story we see (at https://www.forbes.com/sites/dereksaul/2024/07/30/microsoft-earnings-stock-tanks-as-ai-business-growth-worse-than-expected/) that Forbes is giving us “shares of Microsoft cratered about 7% following the earnings announcement, already nursing a more than 8% decline over the last three weeks” with the added “Microsoft’s crucial AI businesses was worse than expected, as its 29% growth in its Azure cloud computing unit fell short of projections of 31%, and sales in its AI-heavy intelligent cloud division was $28.5 billion, below estimates of $28.7 billion” As stated by me (as well as plenty of others) there is no AI. You see AI would give the program thinking skills, they do not have any. They kind of speculate and they have lots of scenario to give you the conditional feeling that they are talking “in your street” but that is not the case. For this simple illustration we get Wired (at https://www.wired.com/story/microsoft-ai-copilot-chatbot-election-conspiracy/) giving us ‘Microsoft’s AI Chatbot Replies to Election Questions With Conspiracies, Fake Scandals, and Lies’, so how does this work? You see the program (LLM) looks at what ‘we’ search for, yet in this the setting is smudged by conspiracy theorists, troll farms and influencers. The first two push the models out of synch. Wired gives us “Research shared exclusively with WIRED shows that Copilot, Microsoft’s AI chatbot, often responds to questions about elections with lies and conspiracy theories.” Now consider that this is pushed onto all the other systems. Then we are treated to “Microsoft’s AI chatbot is responding with out-of-date or incorrect information”, so not only is the data wrong, it is out of date, as I see it what they call ‘training data’ is as I see it incorrect, out of data and unverified. How AI is that? A actual real AI is set on a Quantum computer (IBM has that, although in its infancy) a more robust version of shallow circuits (not sure if we are there yet) and is driven not by binary systems but framed on an Ypsilon particle system, which was proven by a Dutch physicist around 2020 (I forgot the name). This particle has another option. We currently have NULL, Zero and One. The Ypsilon particle has NULL, Zero, One and BOTH. A setting that changes everything.

But the implementation into servers is to be expected around 2037 (a speculation by me) then we get to the thinking programs and an actual AI. So when we see AI, we need to see that is a program that can course through data and give you the most likely outcome. I will admit that for a lot of people it will fit, but not for all and there we get the problem. You see Microsoft will blame all sources and all kind of people, but in the end it will be up to the programmer to show their algorithm is correct and as I am telling you now that it comes down to unverified data. How does that come over to you? 

When you consider that Wired also gave us “it listed numerous GOP candidates who have already pulled out of the race.” The issue of how out of date data is becomes clear. We see all these clever options that others give us, but when some LLM (labeled AI) is un-updated and unreliable, how secure remains your position when you base decision making streams on the wrong data? And that is merely a sales track. 

The last teaspoon is given to us by The Guardian. The Guardian (at https://www.theguardian.com/technology/2024/mar/06/microsoft-ai-explicit-image-safety) gave us on March 7th 2024:

3. Microsoft ignored safety problems with AI image generator, engineer complains
So when you consider the previous parts (especially CrowdStrike) “Shane Jones said he warned management about the lack of safeguards several times, but it didn’t result in any action” Microsoft will state that this is another issue. But I spoke about wrong data, out of date data and unverified data. And now we see that the lack of safeguards and inaction would make things worse and a lot faster than you think. You see as long as there is no real AI, all data needs to be verified and that does not seem to be the case in too many setting. I spoke about policy issues and procedural issues. Well here we get the gist “it didn’t result in any action” and we keep on seeing issues with Microsoft. So how many times will you face this? And that is before people realise that their IP are on Azure servers. So how many procedural flaws will your research we driven into until it is all on a Russian or Chinese or North Korean enabled server (most likely by Russia or China, which is a speculation by me).

As such, it was never rocket science, look at any corporation and in their divisions there will always be one person who thinks of number one (himself) and in that setting how safe are you? 

There is a reason that I do not want Microsoft near my IP. I can only hope that someone waked up and give me a nice retirement present ($30M post taxation would be nice).

Enjoy the day.

Leave a comment

Filed under IT, Science

Tagged as , , , , , , , , , , , , , , , , , ,

April 20, 2021 · 16:14

Baked Alaskan Marketing

Yup, it is about the desert, well in some form. To be honest, I never had it, I saw pictures, I saw people making it (YouTube), but I never ate it. And for today that is OK. You see, it is not really about food. It all started this morning when I saw ‘PS5 isn’t good value compared to Xbox Series X, and I’m sick of it, that is his view, I believe it to be a bit of a hatchet job, but that is usually the case with opinion pieces. There are also ‘anti-Xbox articles’ and that is fine by me. In the end the systems are closely matching, yet for me the actions by Microsoft over the last 8 years have been an indication that the Xbox console is lost to me. No matter what promises they make, as I personally see it, they betrayed the gamers, all in favour of more and more Azure pressure. It is a personal choice and you need to realise that, I personally demoted Microsoft, but it remains personal. Even as they are now starting the Xcloud and other services, I do not want any of them on my systems, but it is mostly personal (partly instinctive). I will not tell you to not do it, you must select what you think is best for you.

When it comes to Xcloud, I feel that I am leaning towards Amazon Luna if I get into that field. The Luna was close to the Google Stadia, almost there but not quite. Considering that Google should have won it as a tech giant implies that Amazon is more hungry and more willing to make the leap, it gives them an edge and in all this, I want something giving me games no other system will, exclusivity matters. I am not certain if the Luna can deliver, but their setting is looking good. 

The fact that we saw ‘Amazon Games opens new Montreal studio, developing a multiplayer game with Rainbow Six Siege veterans’ implies that Amazon has skin in the game, and as such, if my IP (as published earlier) is either PS5, and/or Luna, see it as public domain. The setting for good gaming is what we need and Microsoft (in my personal view) has betrayed that approach. It was their right to make choices, but they come with consequences. So why is there a baked Alaskan in play? Consider the method “The entire dessert is then placed in an extremely hot oven for a brief time, long enough to firm and caramelise the meringue but not long enough to begin melting the ice cream”, it is a way to use the crust to hide what is inside and it can only done once, yet via Microsoft we get ‘As Microsoft pushes partner transformation, a state of ‘channel inertia’ is emerging’, ‘Microsoft’s Surface Laptop 4 Is Nearly Perfect’ and ‘Microsoft’s Visual Studio 2022 is moving to 64-bit’, all different titles, all different sources, but there is a link, lets see if you pick up on it. There is also “Microsoft officials also said they are planning to refresh Visual Studio for Mac by moving it to the native macOS UI”, perhaps you are already catching on. One more hint. It is ‘The FBI removed hacker backdoors from vulnerable Microsoft Exchange servers. Not everyone likes the idea’ there are two parts here.

  1. A court order allowed the FBI to enter networks of businesses to remove web shells used by cyber attackers exploiting Exchange vulnerabilities. But what does this mean for the future of cybersecurity? It is one view, I am not against it, but I get that some are. This has nothing to do with the FBI, it has everything to do with Microsoft dropping the ball. 
  2. Microsoft is seemingly everywhere, with connections way past their computers, Xcloud gives them more and there is too much questions on what Microsoft is capturing, when I asked why they needed to upload 5GB their help-desk stated that this was with my ISP, how stupid is that? I will not allow them on any device, no matter what game will become unavailable to me.

You see, it is not today, or tomorrow, it is what happens a week after that, when we see the exchange issue, the idea of a DDOS version that can use Xcloud is not that farfetched, a DDOS setting using any console it can connect to is a nightmare that should keep several Cyber divisions awake for a long time to come and when we see how Exchange was ‘bitched’ that thought is not the weirdest one to have, with any connection through Xcloud and Azure, the data options are the wettest dreams of organised crime, whilst data facilitators will seek access in whatever way they can and it connects to your systems, your data and could optionally impact your consoles and games. If we get (as published earlier) the setting of ransomware, considering the millions of gamers who have built up a lifetime of achievements, gear and wealth in a dozen games. How long until someone gets a hold of that? Microsoft is spreading itself too thin on too many systems, channels and operating systems. I believe it to be the much larger danger down the track. Yes that is a personal feeling and it is riddled with speculation, but when we see the transgressions over the last 6 months, is the thought that far fetched? 

At the middle of this is their marketing. ‘Partners should ‘ride the wave’, ‘Nearly Perfect’ and a lot more, all to make sure that Microsoft is on the high rise and in the light of diminished negativity, which is the job of marketing, with over 285,000,000 hits on Microsoft (as per today), and 329,000 (Microsoft+scandal), 14,500,000 (Microsoft+problem) we see an overly positive view, which might not be wrong, but that imbalance is making me massively uncomfortable. Especially when we consider “Some Windows 10 users are encountering serious problems following the release of the recent “KB5001330” update, with some reports even coming in that the update itself can’t be installed on some machines”, now these things happen, anyone making other claims is flat-out lying, there is no way that things go perfect, things happen. However, in a stage where Microsoft is so widespread that one hitch could mean all kinds of transgressions, the setting becomes a problem. When we see that and consider “Socure to Provide Identity Verification for Microsoft Azure Active Directory Verifiable Credentials”, we see more and more third party solutions becoming part of the equation. Now, there is nothing wrong with that, but speculatively consider that any danger is double of the previous danger per party involved, as such we see 1%, 2%, 4%, 8%, 16%. The fifth (third party) connection sets the danger to almost one in five, and now consider that we see a stage of overlaps of PC, MAC (iOS), Surface, Azure, Xcloud, Android, we are now optionally in the 32% group, almost one in three where things can go wrong and organised crime wants in, I hope that you realise that a group like HAFNIUM will have no issues selling their solution to the highest bidder, as such, are you sure you want to connect all these systems? 

I accept the work that any marketing division does, but the setting of keeping the users for too long in the dark can have massive consequences down the line and that is where Microsoft has become (my personally speculation) a clear and present danger to gaming (among other parts), that is beside the fact that they are in it for the data, but that too is my personal assumption on the matter. Oh, and I remained conservative, when the error becomes exponential, the setting goes towards 1%+4%+9%+16%, there we see the 4th link making a lager negative impact then any before, I see that, but I personally do not believe that the situation will become quite that bad, but it could be.

Leave a comment

Filed under Gaming, IT, Science

Tagged as , , , , , , , , , , , , , , , , ,