Heads up folks.
Here's a word of warning.

http://www.securitypronews.com/news/securitynews/spn-45-20051103SonySpywareUpdateOpeningYourPCForHackers.h tml


Why they say spyware is good for you.
http://news.zdnet.com/2100-1009-5937730.html

Sony Rootkits Defeat World of Warcraft Anti-cheat System.
http://news.softpedia.com/news/Sony-Rootkits-Defeat-World-of-Warcraft-Anti-cheat-System-11805.shtml


:eek:

Glad I dont have this problem. Just my normal everyday Hackers that want to become Scapers. :rollin:

i saw directions online how to disable the DRM... and it was from Sony themselves. go figure. :dunno:

Not... really. Sony has yet to be anything remotely resembling a good guy in this situation.

Sony (through the keyboard tappers that made the rootkit DRM system, "First4Intarwebomgomgomg, LLC.") offers patches for the malware, not a disable or uninstall. If you had this on your machine, ran the updates, your machine would still be infected, the deep system-level vulnerability and instabilities introduced by it would still be there.

A good listen about the situation. (http://thisweekintech.com/sn12)

Well... unless they want to hack my car or my CD player, i'm safe

Hi D X A

Looks like I'll be hanging onto my cassette Walkman for a few more years.....

Mark

Good idea.
I don't think that you will see much more of this type of malware from the big boys. Sony is about to be sued from the four corners over this. Now they are saying that the folks from Norton had something to do with this. I saw a sig somewhere that said in effect that Sony had now made it safer and easier to pirate musis than to buy it. I'm sure that the guy who thought that this was a good idea is in a bit of hot water.
http://www.theregister.co.uk/2005/11/11/secfocus_sony_analysis/

http://www.boston.com/business/technology/articles/2005/11/11/computer_worm_exploits_software_on_sonys_cds/

Sony says only 20 titles have this software on them... is there a list somewhere that says which ones? I buy cds a lot and if I've put myself at risk because of their cds opening up a hole in my internet security, i'm gonna be pissed..

List here, dunno how close to comprehensive it is, though: http://www.eff.org/deeplinks/archives/004144.php

Apparently these cd's aren't being sold in the UK with this stuff on. I read on one site it was because it was illegal in the UK or sommat but the bbc website def said the UK versions don't have it on. So my advice- buy UK cds instead if you need that cd desperately or boycott Sony cd's altogether. I'm certainly now wary of them after doing such a DOH thing! I notice EMI have been quick to say they don't have this sort of rootkit on their cd's.. Embarrassment after embarrassment. And what with Sony's head honcho asking what all the brouhaha was about because most people have never heard of rootkits.. "insert foot in mouth. Do not inhale" Nice to see those at the top so well informed and in touch with their customers... not..

Okay they have now suspended producing these cds..

http://news.bbc.co.uk/1/hi/technology/4430608.stm


Sony stops making anti-piracy CDs


Sony has said it will suspend the production of music CDs with anti-piracy technology which can leave computers vulnerable to viruses.

The move came after security firms said hackers were exploiting the software to hide their creations.

The software has been used by viruses to evade detection by anti-virus programs and infect computers.

Sony said it had a right to stop people illegally copying music, but added that the halt was precautionary.

"We also intend to re-examine all aspects of our content protection initiative to be sure that it continues to meet our goals of security and ease of consumer use," the company said in a statement.

Viral trio

In late October Sony BMG was found to be using stealth techniques to hide software that stopped some of its CDs being illegally copied.

Windows programming expert Mark Russinovich discovered that the Sony XCP copy protection system was a so-called "root-kit" that hid itself deep inside the Windows operating system.

XCP uses these techniques to install a proprietary media player that allows PC users to play music on the 20 CDs Sony BMG is protecting with this system. The CDs affected are only being sold in the US.

Soon after Mr Russinovich exposed how XCP worked security experts speculated that it would be easy to hijack the anti-piracy system to hide viruses.

Now anti-virus companies have discovered three malicious programs that use XCP's stealthy capabilities if they find it installed on a compromised PC.

Backdoor virus

Security firm Sophos said it had found a virus attached to a spam message posing as an e-mail from a British business magazine. The subject line of the message is: "Photo Approval Deadline".

Those opening and running the program attached to the mail will have their computer infected with the Stinx-E trojan. The virus is also known as Breplibot and Ryknos.

CD being put in PC, BBC
Sony was trying to stop illegal copying of its CDs
This virus opens a backdoor into infected machines and tries to download more malicious code from the net to further compromise an infected machine.

A bug in the code of the first variant of this virus prevented it working properly but now other versions of the malicious program are appearing that fix this problem.

So far the numbers of people caught out by the virus is thought to be very low.

Graham Cluley from Sophos said he expected other virus writers to start exploiting the Sony XCP code.

Sony apologised, saying it was working with computer security firms to address the problems.

The news came as more legal challenges to Sony's use of the anti-piracy program were being launched.

At last count six class-action lawsuits have been started against the company.

As the Boycott Sony blog pointed out, the appearance of these viruses could make it much easier for lawyers to argue that the XCP software can cause real harm to a user's computer.

A good read is the blog that started it all-

http://www.sysinternals.com/Blog/

Looks like Sony is trying to stonewall the press but not pass this info to customers and make any uninstalls as difficult as possible and other stuff..

Naughty naughty Sony....

Sony Rootkits Defeat World of Warcraft Anti-cheat System.
http://news.softpedia.com/news/Sony-Rootkits-Defeat-World-of-Warcraft-Anti-cheat-System-11805.shtml

That's pretty funny.