Further Sony hi(jack)inks

by Brian Enigma on November 14, 2005 5:35pm

in Dear Diary,Links

Further Sony hi(jack)inks:

As many of you have heard, sev­eral recent Sony CDs do some rather nasty things when you place them in a Win­dows PC.  Notably, they install what is effec­tively a “rootkit”–a piece of soft­ware that installs itself and patches the oper­at­ing sys­tem so that noth­ing, includ­ing the oper­at­ing sys­tem itself, can see the pro­gram.  It is effec­tively invis­i­ble to every­thing.  This invis­i­ble process then con­trols what you can do with the CD.  There is no unin­staller and the process of man­u­ally remov­ing it will often ren­der your CD drive inop­er­a­ble until you rein­stall Win­dows.  It also reports usage sta­tis­tics, via the inter­net, to head­quar­ters.  Details are all over Google News.  Even­tu­ally, they “released” a web-based unin­staller that is so com­plex to use, you have to won­der if it is intentional–it involves two rounds of email responses and an ActiveX con­trol that must be installed in Inter­net Exploder.  The use of the unin­staller is lim­ited to one machine with­ing 48 hours of the email.

Two pieces of recent news include:

  • The Sony rootkit steals Open Source code.  The LAME MP3 library seems to be part of the rootkit.  This library is released under the LGPL license, which requires the full source code to be made available.
  • Sony’s ActiveX unin­staller has seri­ous holes.  It seems the unin­staller marks itself as “safe for script­ing” (mean­ing any web page or local script can call upon it.) It includes func­tions such as “Reboot­Ma­chine” and “Exe­cute­Code.”  Guess what they do.  Yes, with the ActiveX installed, any web­site can reboot your machine or exe­cute arbi­trary commands.

Speak­ing of open­ing the door for hack­ers, it seems that there is now at least one tro­jan horse out there that makes use of the fact that the Sony rootkit hides from the oper­at­ing sys­tem any­thing that starts with $sys$.

Three cheers to Sony for mak­ing hack­ing eas­ier for skript kid­dies every­where!  With any luck, this Sony Dig­i­tal Restric­tions Man­age­ment tech­nol­ogy will be so ubiq­ui­tous that any 7-year-old can write their very own worm.

Share and Enjoy:
  • Digg
  • Reddit
  • del.icio.us
  • StumbleUpon
  • Yahoo! Buzz
  • Facebook
  • Google Bookmarks
  • Technorati

If you liked this post, you may also enjoy:

  1. LJProxy: From friend-locked Live­Jour­nal posts to Google Reader
  2. Bioshock DRM?
  3. …and the little-ist giant’s heart was filled with BLOOD!
  4. wcap soft­ware release
  5. Double-U Tea Eff?!?!

Tagged as: fail, hackers, rootkit, sony

Leave a Comment

Previous post:

Next post: