InfoTech: Microsoft accused of hacking

Microsoft is very angry about the number of PC running either counterfeit copies of its products or making multiple installations from a single copy. And in China, where - by number - more computers are being sold than in any other country, the company sees it as a particular problem.

Microsoft says "this is a completely voluntary programme." What that means, in non-Microsoft-speak is that users may choose to install the module or not. But that brings into question the small issue of informed consent.

For example, the Windows Update descriptions of available modules for one of the very few Windows machines remaining in our own organisation this week offer us"high priority updates - recommended) and those are Windows malicious software removal tool - October 2008, four units described as "security update for Windows XP, Cumulative Security Update for Internet Explorer 7 for windows and Security Update for Windows XP.

Each of those has a code number attached. All have an expandable description. None of those descriptions include any mention of a product to check the legitimacy of the software installed. In fact, it turns out that the module is, in fact, in the latest version of "Windows Genuine Advantage." This is not part of the automatic updates system: but if users want to use the automatic updates, then they have to allow a scan of their computer and that scan involves putting a small program onto the user's PC. Part of the scan analyses the legitimacy of the software installed. If it finds counterfeit versions then it installs a small "nagger" programme that pops up and tells the user that the software is fake, or is an unauthorised installation. For many users, that irritant was not enough to make them go out and buy a real copy.The latest version installs a much more aggressive response to non-compliance.

There is absolutely no doubt that Microsoft is entitled to protect its rights to sell and benefit from its software. And there should be no complaint at the inclusion of such a module in boxed product or, even, pre-installed versions. Where some are accusing Microsoft of "hacking" is in relation to modifications of installed software without informed consent.

Microsoft says that its research shows that 90% of computers in China have counterfeits of its products. In 2006, the Chinese government ordered that no PC should be sold without an operating system - which many shops have interpreted as carte blanche to use the same copy many times.

But there is a legitimate concern that behind Microsoft's actions is something else: by targeting users of XP, albeit illicit copies, and forcing them to use buy an up to date version, Microsoft can force migration to the deeply unpopular Vista. Coinciding with the move, Microsoft has temporarily reduced software prices to a level that makes their products affordable to many ordinary Chinese.

Microsoft is right to warn consumers of the dangers of using counterfeit software which may contain all manner of malware. Consumers, in a case of selective blindness, do not consider that criminals who copy software and sell it to them might also include on that disk rootkits, call-home, keylogging and other software which would enable them to steal data or to use the computers as part of a network to launch attacks on other parts of the internet.

Of course, there is an alternative: for the vast majority of users, Windows is one of the least essential components of the computer. Desktop Linux from, e.g. SUSE's, is now ready for primetime. Whilst Windows users will have a short period of transition, mainly due to the inbuilt security features of Linux and lasting, oh, maybe ten minutes, office workers and heavy internet users will find no disadvantages. It is gamers, some who are tied to specific Windows-only applications some with the very latest technology or less popular peripherals who will have difficulty because their hardware provider chooses not to make drivers available for Linux.