ghacks Technology News

Rootkits: Sony does it again


I would have never thought that a company like Sony would not learn from its mistakes especially after the first rootkit debacle which was a major public relations fiasco for Sony. The first rootkit was placed on several audio CDs that were distributed in 2005 and led to a $6 million settle case in the United States. While the rootkit was intended to make it impossible (albeit ineffectively) to copy music from the CDs it was effectively used by producers of malware, trojans and spyware to hide their code from antivirus software.

The sentenced that always reminds me of how amateurish Sony handled the whole affair went something in the line of “People who don’t know what rootkits do should not care about them”.

It seems Sony did it again. F-Secure is reporting that Sony is now selling a USB stick – the Sony MicroVault – which installs a hidden folder in c:\windows when installing the USB fingerprint software.


So, when enumerating files and subdirectories in the Windows directory, the directory and files inside it are not visible through Windows API. If you know the name of the directory, it is e.g. possible to enter the hidden directory using Command Prompt and it is possible to create new hidden files. There are also ways to run files from this directory. Files in this directory are also hidden from some antivirus scanners (as with the Sony BMG DRM case) — depending on the techniques employed by the antivirus software. It is therefore technically possible for malware to use the hidden directory as a hiding place.

F-Secure suspects that the hidden folder is used to protect the fingerprint authentication and strongly disagrees that this is the correct way to achieve a protection.

I think that Sony made a big mistake in using such a technology again even if it was intended to be of good use for the owner.

Read More:

F-Secure Blog




Tags: , , , , ,
Categories: Music Industry, Security, The Web

Previous Post: What can I do if Bittorrent gets throttled or blocked

Next Post: Organize Books, Games, DVDs and CDs with Libra


Related posts:

First Trojan using Sony DRM spotted
Sony halts production of ‘rootkit’ CDs
How to remove the Sony – XCP DRM Rootkit
Sony and the rootkit, the story continues
Sony music cds might install spyware on your system
Sony to patch copy-protected CD
World of Warcraft hackers using Sony BMG rootkit
Sony, the rootkit and the internet community

3 Responses to “Rootkits: Sony does it again”

  1. Tobey says:
    August 28, 2007 at 8:48 pm

    Oh they obviously screwed up again.

    How many more times… :-\

    Reply
  2. The Guru says:
    August 29, 2007 at 5:35 am

    Sony is not having a good year…

    Reply
  3. Benóný says:
    August 29, 2007 at 1:10 pm

    “Guru” Sony hasn’t had a good year since 2004 or 2005 :|

    Reply

Leave a Reply   Follow Ghacks   Subscribe To Comment Rss

Recent Posts

Popular Articles

Software Updates

by Appnews

Topics

Links

Popular Tags

Follow This Blog

Ghacks Full Feed Twitter  All Feeds

Information

About Ghacks

Ghacks is a technology blog that was founded in 2005 by Martin Brinkmann. It has since then become one of the most popular technology sites on the Internet with five authors and regular contributions from freelance writers.

 

Authors

Joe Anderson
Martin Brinkmann (Senior Editor)
Cheryl Correa
Orrett Morgan
Daniel Pataki
David Pierce
Jack Wallen

© 2005-2009 Ghacks.net. All Rights Reserved. Privacy Policy - About Us