Forum Navigation

Sony, Rootkits and DRM Gone Too Far

 
Post new topic   Reply to topic    Zombie Nexus Forum Index -> Security
View previous topic :: View next topic  
Author Message
NightSpirit
Site Admin


Joined: 26 Nov 2002
Posts: 2955
Location: Enfield, London, UK

PostPosted: Tue Nov 01, 2005 10:44 am    Post subject: Sony, Rootkits and DRM Gone Too Far Reply with quote

It seems that Sony have released a music CD that will automatically install an exploitable rootkit on any autorun-enabled Windows PC that it is placed in! Evil or Very Mad

Mark Russinovich located this on a routine scan of his machine and details his experience at working out how it got there and what he had to do to remove it:

Quote:

The entire experience was frustrating and irritating. Not only had Sony put software on my system that uses techniques commonly used by malware to mask its presence, the software is poorly written and provides no means for uninstall. Worse, most users that stumble across the cloaked files with a RKR scan will cripple their computer if they attempt the obvious step of deleting the cloaked files.



Clearly another case of the music industry doing it's best to make pirating music a far better option than trying to purchase it Roll Eyes

Read the full article @ SysInternals.com
_________________
Whedon: We will rule over this time slot, and we will call it... "This Time Slot".

Fox: I think we should call it... your grave!

Whedon: Ah, curse your sudden but inevitable betrayal!

Fox: Ha ha HA! Mine is an evil laugh...now die!

-- Rei

Back to top
View user's profile AIM Address MSN Messenger
FraZor
Site Admin


Joined: 26 Nov 2002
Posts: 5118
Location: Enfield, London, UK

PostPosted: Mon Nov 07, 2005 4:14 pm    Post subject: Reply with quote

Looks like Sony have backed off, well sort of:

http://www.theregister.co.uk/2005/11/03/sony_rootkit_drm/

_________________
Quote:"The question is not whether or not you're paranoid, its whether or not you're paranoid enough.'' Max, Strange Days
System: DFI LanParty UT NF4-Ultra, Athlon64 X2 4400+, GeForce 7800GTX 256Mb, 2Gb Corsair XMMS3500C2PRO, Creative X-Fi.
Back to top
View user's profile
NightSpirit
Site Admin


Joined: 26 Nov 2002
Posts: 2955
Location: Enfield, London, UK

PostPosted: Tue Nov 08, 2005 1:00 pm    Post subject: Reply with quote

More on this @ Techdirt.com

Thomas Hesse, President of Sony's Global Digital Business wrote:

Most people, I think, don't even know what a rootkit is, so why should they care about it?



EEK!
_________________
Whedon: We will rule over this time slot, and we will call it... "This Time Slot".

Fox: I think we should call it... your grave!

Whedon: Ah, curse your sudden but inevitable betrayal!

Fox: Ha ha HA! Mine is an evil laugh...now die!

-- Rei

Back to top
View user's profile AIM Address MSN Messenger
FraZor
Site Admin


Joined: 26 Nov 2002
Posts: 5118
Location: Enfield, London, UK

PostPosted: Tue Nov 08, 2005 2:14 pm    Post subject: Reply with quote

SysInternals have released a tool for detecting RootKits now:

http://www.sysinternals.com/Utilities/RootkitRevealer.html

_________________
Quote:"The question is not whether or not you're paranoid, its whether or not you're paranoid enough.'' Max, Strange Days
System: DFI LanParty UT NF4-Ultra, Athlon64 X2 4400+, GeForce 7800GTX 256Mb, 2Gb Corsair XMMS3500C2PRO, Creative X-Fi.
Back to top
View user's profile
NightSpirit
Site Admin


Joined: 26 Nov 2002
Posts: 2955
Location: Enfield, London, UK

PostPosted: Thu Nov 10, 2005 4:26 pm    Post subject: Reply with quote

More on this one again:

Slashdot are reporting that the state of California are sueing Sony over this issue. The news item also includes links to a few lists of which CDs are affected.

Slashdot.org

_________________
Whedon: We will rule over this time slot, and we will call it... "This Time Slot".

Fox: I think we should call it... your grave!

Whedon: Ah, curse your sudden but inevitable betrayal!

Fox: Ha ha HA! Mine is an evil laugh...now die!

-- Rei
Back to top
View user's profile AIM Address MSN Messenger
FraZor
Site Admin


Joined: 26 Nov 2002
Posts: 5118
Location: Enfield, London, UK

PostPosted: Sun Nov 13, 2005 11:16 am    Post subject: Reply with quote

Yay, now the EFF (Electronic Frontier Foundation) have gotten involved and are considering legal action. Smile

http://www.eff.org/deeplinks/archives/004149.php

_________________
Quote:"The question is not whether or not you're paranoid, its whether or not you're paranoid enough.'' Max, Strange Days
System: DFI LanParty UT NF4-Ultra, Athlon64 X2 4400+, GeForce 7800GTX 256Mb, 2Gb Corsair XMMS3500C2PRO, Creative X-Fi.
Back to top
View user's profile
FraZor
Site Admin


Joined: 26 Nov 2002
Posts: 5118
Location: Enfield, London, UK

PostPosted: Sun Nov 13, 2005 3:22 pm    Post subject: Reply with quote

It seems Microsoft is unhappy too:

http://www.eweek.com/article2/0,1895,1884677,00.asp

_________________
Quote:"The question is not whether or not you're paranoid, its whether or not you're paranoid enough.'' Max, Strange Days
System: DFI LanParty UT NF4-Ultra, Athlon64 X2 4400+, GeForce 7800GTX 256Mb, 2Gb Corsair XMMS3500C2PRO, Creative X-Fi.
Back to top
View user's profile
FraZor
Site Admin


Joined: 26 Nov 2002
Posts: 5118
Location: Enfield, London, UK

PostPosted: Mon Nov 14, 2005 11:28 am    Post subject: Reply with quote

And now it seems MS have decided to remove Sony's rootkit automatically using MS AntiSpyware (if installed).

http://www.eweek.com/article2/0,1895,1886122,00.asp

_________________
Quote:"The question is not whether or not you're paranoid, its whether or not you're paranoid enough.'' Max, Strange Days
System: DFI LanParty UT NF4-Ultra, Athlon64 X2 4400+, GeForce 7800GTX 256Mb, 2Gb Corsair XMMS3500C2PRO, Creative X-Fi.
Back to top
View user's profile
Display posts from previous:   
Post new topic   Reply to topic    Zombie Nexus Forum Index -> Security All times are BST
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum

ZBN Codebase (version 3.4.6)
Copyright © 2001 - 2009 Fraser Pearce & Graeme Wheeler. All Rights Reserved.
All trademarks and logos are the property of their respective owners.

Powered by phpBB © 2001, 2005 phpBB Group
Enhanced by these phpBB Mods and Hacks