'I cannot sign drivers, which means I cannot ship updates for WireGuard for Windows,' the creator of the VPN protocol says. On X, a Microsoft rep says he's working to get accounts unblocked.
  • Wispy2891@lemmy.worldEnglish
    11·
    5 hours ago

    My conspiracy theory: those signing keys are very “tasty” maybe Microsoft was aware that some state-sponsored attacker got hold on them and blacklisted for everyone’s safety.

    Imagine what would happen if NSA or that other Israeli spy company could sign fake veracrypt or Wireshark binaries

  • partofthevoice@lemmy.zipEnglish
    2·
    12 hours ago

    I keep dual boot with Windows available for my wife. About a year ago my Fedora install was stuck in a boot loop and I hadn’t used my PC in a good while, nor updated anything the last time I had used it. The only conclusion I can think of is either bitflips corrupted the boot process, or Windows fucked with my Fedora install at some point while — perhaps my wife’s activity allowed a Windows update through, I don’t know. They’re on separate drives though, so… I recovered my data and reinstalled, kept Windows but I am now extremely sensitive to any shenanigans from that drive. Reading this news has me considering to tell my wife she will have to use Windows from a VM on my PC.

  • trackball_fetish@lemmy.wtfEnglish
    22·
    21 hours ago

    Pretty wild to see them this brazen. They really don’t want citizens to have access to encryption of any kind. What’s the tipping point?

  • youmaynotknow@lemmy.zipEnglish
    351·
    1 day ago

    How many more of these do people really need to just get the fuck out from under Microsoft’s umbrella?

      • youmaynotknow@lemmy.zipEnglish
        5·
        17 hours ago

        Yeah, no, I totally get it. It just blows that people just bends over like this for all the corpo bullshit, users, devs and other companies alike. I have a small business with my wife, and I try to run as much as humanly possible on open source software. I donate to the platforms we use, and for almost 3 years we’ve gotten away with not giving any money to Microsoft, Google, Amazon, Apple or any of the other tech giants. It is a Titanic task to keep everything running, for sure, but absolutely worth it. My point is that, if we can do it being so small and barely profitable, I can’t imagine larger companies having an issue with moving away from these predatory practices. Then again, I’m not fully aware of what other businesses might require that we can live without comfortably.

        • undrwater@lemmy.worldEnglish
          2·
          15 hours ago

          Congrats! I did the same.

          You know all those conveniences that Google gives us for “free” that we all of a sudden can’t seem to live without? Microsoft does that for “enterprise level” companies.

  • fireshell@kbin.earth
    58·
    1 day ago

    Introduce mandatory signatures for driver files, they said. It’s so safe, it’s for your protection against viruses - they said. Keys can always be revoked from unscrupulous developers - they said. It will never be used to fight opensource, they said. It will never be a tool against inconvenient CIA applications - they said.

  • Godort@lemmy.caEnglish
    1872·
    2 days ago

    “Not every ‘WTF micro$oft’ moment is a slam dunk,” he tweeted. “I’ve emailed VeraCrypt personally and we’ll get him unblocked. I’ve already talked to Jason at WireGuard. Not everything is a conspiracy, sometimes it’s literally paperwork.”

    Funny how paperwork never really seems to be a problem for any other OS.

  • sp3ctr4l@lemmy.dbzer0.com
    English
    933·
    1 day ago

    My guess?

    NSA is currently figuring out how to insert backdoors into all these things.

    You see, the last backdoor they used all the time, well… people figured it out.

    So, they had to ban uh, checks notes, apparently all routers, basically.

    So, now they need a new backdoor into literally everything.

    • redsand@infosec.pubEnglish
      2·
      8 hours ago

      Not quite. The way the NSA and CIA usually work with Microsoft for exploits is pretty much just having them hold off on specific updates whenever needed.

      In this case it sounds like they have specific targets using windscribe and veracrypt that they need to remain unpatched.

  • paraphrand@lemmy.worldEnglish
    61·
    1 day ago

    Wow, that’s pretty damming. Three of them? This can’t be a random absurd error like it plausibly could have been for the first one reported.

    There must be a really big flaw in their system if three VPN devs just “missed an email”. Is Microsoft sending the emails from a bullshit sus address?

  • palordrolap@fedia.io
    451·
    2 days ago

    I’d like to believe that this means that these three pieces of software actually work and that someone in high office has decided that that is unacceptable.

    Paranoid authoritarians really do not like ordinary people having access to secure communications and personal privacy. That might be an avenue they can use to organise and elect someone who isn’t a paranoid authoritarian, and that won’t do.

    On the other hand, these pieces of software might already be compromised and this is all an elaborate double-bluff.

    In which case it’s time for a few well placed communications over purportedly secure channels that would be guaranteed to generate an authoritarian response. Which they’ll then have to pretend they didn’t read until it’s too late.

    I’m talking organising - horrors - peaceful protests. They really don’t like those. They have to use their brains, or someone else’s, in order to find a good excuse to stick the boot in.