Inside the Microsoft Digital Crimes Unit

Trailrunner7 writes "The Microsoft Digital Crimes Unit has been spearheading botnet takedowns and other anti-cybercrime operations for many years, and it has had remarkable success. But the cybercrime problem isn't going away anytime soon, so the DCU is in the process of building a new cybercrime center here, and soon will roll out a new threat intelligence service to help ISPs and CERT teams get better data about ongoing attacks. Dennis Fisher sat down with TJ Campana, director of security at the DCU, to discuss the unit's work and what threats could be next on the target list."

Wait a minute

[NoNonAlphaCharsHere]

Is this an article about how the Windows 8 UI was designed?

Re:

[Doug Otto]

Damn. Too bad I used up my last mod point yesterday.

I lol'd.

Re:Wait a minute

[NoNonAlphaCharsHere]

Not to worry, somebody already modded it with a "Troll", which is even funnier...

Re:

[Bud]

Is this an article about how the Windows 8 UI was designed?

Or about how they kept the world's population hostage with Clippy the Paperclip? I mean, when they heard Clippy was going to be removed from the next version of Office, around 350 million people upgraded straight away.

Or is it about how Microsoft is paying 500 million (USD, EUR, whatever) in fines every couple of years, in order to keep doing business as a software monopoly? That is probably the most brilliant crime by the Microsoft Digital Crimes Unit ever!

Re:

[recoiledsnake]

I want to know exactly what idiot gave Microsoft the authority to create a law enforcement unit other than their jackbooted licensing audit thugs from the Business Software Alliance.

Needs a judge's approval.

But we’re very careful about how we do this. We’re not just going out there shooting stuff. We walk in with a pile of legal documents. We’re asking for a judge to agree with what we found.

Re:

[bws111]

But it is so hard to read all the way to the first question of the interview.

Re:

[Razgorov Prikazka]

But if youre finally at the questions, things go from bad to worse. One would expect a "Digital Crimes Unit" to:
- investigate security holes (preferably before shiping it out)
- make sure that virus-makers dont have a chance.
- find, cage and string up the idiot that makes Win8 harder to get rid of than a bad case of Herpes.
- see to it that three-letter-agency's (both US and nonUS) place backdoors in MS software.
- Explosions, romance, fast car's, flashing badges and glu

Re:

[SJHillman]

You don't actually think Microsoft is going around kicking in doors, do you? They're mostly working as a legal presence or as a team of civilian experts assisting law enforcement and everything goes through a judge.

Re: This is rather disconcerting.

[hAckz0r]

No. Its all about the appearance of being proactive as to minimize their legal liability. Face it, its cheeper than the alturnative.

If they really wanted to 'stop crime' as their top objective they could just make a more secure product, starting by ejecting all the useless legacy code that lets the bad guys win without hardly trying. Its hard to make a secure design starting from a block of swiss cheese. There are more things they could do to make crime harder than I could ever possibly list in this limi

Re:

[lister king of smeg]

Ok just one question first; Do we get to ride into battle on the back of a rampaging gnu leading a hoard of penguins and fight iNinjas?

Re:

[Cyberax]

Law enforcement? I think you're confused. This unit is created specifically to commit crimes!

Re:

[Synerg1y]

They're not actually doing anything illegal. The situation is like this: the offenders are in plain sight on the internet, they don't bother hiding because there is nobody policing where they're enacting their schemes.

MS is exposing them to authorities basically doing their legwork for them in tracking down these criminals.

They have motivation to do it too, its their systems that are most often affected by these criminals, so they are being uncannily pro-active about it.

It's the rare sight of corporate Ame

When are they going to arrest...

[Viol8]

... the Windows development team for allowing such a security swiss cheese of an operating system to escape from the lab and the marketing team for trying to sell to innocent consumers?

Re:When are they going to arrest...

[Nerdfest]

Isn't almost every single instance of Android malware a Trojan? In the case of Windows, for years a large percentage was drive-by exploits of IE, ActiveX, and just about every other part of the system.

Re:

[lgw]

Are you still going on about pre-Vista Windows? Let it go man, let it go.

Re:

[JDG1980]

Can't speek to OS X but Android is so brain damaged as to not look much like Unix/Linux at all.

Actually, Android's security model is much better than the traditional Unix security model. The traditional Unix model is that the program is the user and has the same permission as if the user were manually doing the operation him/herself. This was designed in the 1970s when all users were coders, and makes no sense today when people download untrusted code from the Internet on a regular basis. Android's securi

su and then rm -rf /

[tepples]

How come the "Superior UNIX design" that have lead to tens of thousands of +5 Insightful Slashdot posts over the years doesn't protect Android and OS X?

UNIX does nothing to stop the owner of a computer system from wiping out all files by doing su and then rm -rf / or similar. There are only two ways to stop a device's owner from doing that: education, or taking administrative privileges away from the device's owner.

Re:

[trazom28]

They can't.. it's called "Job Security" for the digital crimes unit.

"remarkable success"

[Anonymous Coward]

You mean how they play whack-a-mole with botnets and claim victory when they accidentally hit one, but stay curiously mum when the very same botnet pops up again only two weeks later?

N'mind that they've been criminally lax in improving their software, creating a very easily planted very fertile ground for an entire flora and fauna of malware to grow and prosper in the first place. They created this "ecosystem" on a much grander scale than this "remarkable success" in taking down little pieces of it, for a short while.

Re:

[recoiledsnake]

N'mind that they've been criminally lax in improving their software

They have added Secure Boot support in Windows 8 to precisely combat undetectable malware, yet we have people blaming them for it.

Re:

[h4rr4r]

Because what was wanted was to prevent drive by installs and that sort of thing. Secure boot is a whole other kettle of fish.

It is about letting MS and the MPAA own your machine, security is only a side effect.

Re:

[CastrTroy]

Exactly. They walk a very fine line between people complaining that they're locked out of their own computer, and allowing viruses to just run rampant on the system. They could probably make a very secure system, but people would complain too much because all their applications would have to come vetted from MS and it would be like running IOS on your desktop.

Re:

[10101001 10101001]

They could probably make a very secure system, but people would complain too much because all their applications would have to come vetted from MS and it would be like running IOS on your desktop.

Um...yeah...perhaps you've never heard of 'iOS jailbreaking"? Seriously, even with MS vetted drivers (a mandatory part of 64-bit Windows), almost entirely non-Admin user programs (because of how Windows is designed, there are a handful of MS programs that run at higher privilege to provide the Win32/64 environemnt

Windows RT

[tepples]

As I understand it, people blame Microsoft for adding Secure Boot support to Windows 8 because of what Microsoft did to the companion product Windows RT at the same time. Microsoft forbids manufacturers of devices that ship with Windows RT from allowing the user to disable or otherwise reconfigure Secure Boot. Devices with an x86 CPU MUST allow user configuration of Secure Boot, but devices with an ARM CPU MUST NOT.

Re:

[recoiledsnake]

Yet Apple gets a free pass on iPads, same with firms such as Motorola. How much is WindowsRT selling and how much of a threat is it to freedom compared to the iPad?

Re:

[tepples]

Yet Apple gets a free pass on iPads

Since when?

Re:

[bws111]

You mean like this [fbi.gov]?

Ever heard of a private eye?

[tepples]

Microsoft's Digital Crimes Unit exists alongside the FBI's cyber-crime efforts for the reason that any other private investigation firm exists alongside a police force.

I was going to say

[IWantMoreSpamPlease]

that the great digital crime of recent note was Windows 8, but I've been beaten to the punch, several times already.

Re:

[bornagainpenguin]

Looks like the anti-MS shills are spamming Slashdot's comment section again.

Who needs shills when your competition has been diligently chumming the water in which they live for a decade or two? Microsoft has earned its hatred in this industry, one pissed off user at a time. To pretend this entirely predictable reaction is the work of shills only betrays your own allegiance and paid for status...

Hmmm

[Lost Penguin]

What crimes does this branch of Microsoft commit that the other branches do not?