2005-11-02

(criminal) Sony, Rootkits and Digital Restrictions Management Gone Too Far

For anyone who still thinks DRM is a good idea, here's what a security researcher found: his system had been infected by a "rootkit" simply because he happened to purchase a copy-protected CD from Sony!

Sony, Rootkits and Digital Rights Management Gone Too Far

Last week when I was testing the latest version of RootkitRevealer (RKR) I ran a scan on one of my systems and was shocked to see evidence of a rootkit. Rootkits are cloaking technologies that hide files, Registry keys, and other system objects from diagnostic and security software, and they are usually employed by malware attempting to keep their implementation hidden. The RKR results window reported a hidden directory, several hidden device drivers, and a hidden application.

Another excerpt, from the end of the article:

The entire experience was frustrating and irritating. Not only had Sony put software on my system that uses techniques commonly used by malware to mask its presence, the software is poorly written and provides no means for uninstall. Worse, most users that stumble across the cloaked files with a RKR scan will cripple their computer if they attempt the obvious step of deleting the cloaked files.

No comments: