About RSS About PDA/Pocket PC edition
Search for: in 

Windows Watch - an XP & Vista blog

Trojan horse
Sony XCP technology was poorly designed and could be easily exploited by worm authors
R E L A T E D   C O N T E N T
Similar articles
KnowledgeBANK
News centre
More from vnunet.com

Free email newsletters




Jargon Buster

ADVERTISEMENT

Sony backs out of rootkit anti-piracy scheme

Record label caves in under intense pressure

Tom Sanders in California, vnunet.com 15 Nov 2005
ADVERTISEMENT

Sony BMG has promised to stop making music CDs that use its controversial XCP anti-piracy technology.

The record label had come under fire for the technology, which security experts warned was poorly designed and could be easily exploited by worm authors to hide malware from antivirus software.

Consumers inserting the CDs in their computers would unknowingly install the application, which was very hard to remove. In an effort to remain installed, the technology used a so-called rootkit to hide itself from the user and the system.

It took only one week for the first virus to surface that exploited the features of the rootkit to try and hide from antivirus software.

The software made alterations at a deep level of the Windows operating system to allow it to monitor and limit the number of copies that a consumer made of a CD, as well as to regulate the file formats that could be used to rip the disk.

Sony reserved the right to explore other anti-piracy technologies, but said it will re-examine its content protection initiatives to ensure that they meet security and ease of use standards. 

The label will recall all unsold CDs from stores and has instated a consumer exchange programme for consumers who have previously purchased XCP equipped CDs. The Electronic Frontier Foundation on its website has published a list of titles affected by the technology and offers instructions on how to recognise the CD.

About two million CDs with the technology have been sold worldwide. Consumers have called for a boycott of Sony's music, and CDs that carried the anti-piracy technology have been slammed on online review sites such Amazon, causing their ratings to drop.  

Sony is also facing lawsuits in California and Italy over the technology and more actions are likely to follow. 

The XCP technology was developed by UK software company First 4 Internet

Several security vendors including Computer Associates, Sophos, Symantec and Microsoft have started to provide or will provide a tool to remove the XCP software.

Sony has always maintained that there were no security risks associated with the anti-piracy technology.

Trojan horse
Computer Associates blacklists Sony DRM
Pressure mounts on Sony to abandon insecure technology  10 Nov 2005
AOL
Worm turns on AOL chat service
Talk is not cheap  31 Oct 2005
Computer virus
Rootkit creators turn professional
Dodging the virus shield becomes big business as authors 'outsource' malware creation  19 Oct 2005

All Hacking

Like this story? Spread the news by clicking below:

Post this to Delicious del.icio.us    Post this to Digg Digg this    Post this to reddit reddit!

Permalink for this story
R E A D E R   C O M M E N T S
Post your comment Post your comment   What is this?

M A R K E T P L A C E
Sponsored links
F E A T U R E D   J O B S
IT Support Analysts
Bedford, United Kingdom | BPHA
IT Support Analysts, Bedford, £24,918-£28,477 The Role: bpha is looking for two high calibre IT staff members to join our IT Team at our head office in Bedford to help us deliver new and improved ... more >
Senior Development Managers
United Kingdom | MI6
Senior Development Managers, £39,753 - £58,990 We're the Secret Intelligence Service. You may know us as MI6. Information is at the heart of everything we do. We operate around the world to gather intelligence which ... more >
Cisco Network Engineer
Twickenham, United Kingdom | Unifi Communications
Junior Network Engineer, Twickenham, £20 to £25k Depending on Experience Small, ambitious Cisco partner seeks a self-motivated and versatile individual to join as a Cisco Network Engineer. The successful candidate will very quickly be required ... more >
Technical Architect
Warrington, United Kingdom | Environment Agency
Technical Architect, Warrington, Salary and package to attract the best These positions require highly skilled Technical Architects with demonstrable experience of working within a complex and distributed infrastructure environment. Working within the Service Assurance team ... more >
More job opportunities

ADVERTISEMENT

Pass your driving test with ease for only £9.99!

Useful links: About us . Privacy policy . Terms & conditions . Site map . Bookmark this site . Advertise
Consumer Technology websites:
Active Home Product reviews, competitions, news
Computeractive Software reviews, hardware reviews, buyers' guides, workshops, downloads
Gizmodo the daily gadget blog: technology news and reviews
PC Magazine your personal guide to technology
PCW software product reviews, hardware product reviews, buyers' guides, competitions
WebAct!ve what's happening on the web
What PC? helping you purchase the right computer, digital camera, peripherals, gadgets and more
Blogs:
Test Bed The PCW Labs blog, PCW Inter@ctive A reader blog from PCW. Your views, your comments, your say, Windows Watch Keeping an eye on the latest XP % Vista news
Jobs & Recruitment websites:
Accountancy Age Jobs Accountant jobs, jobs in finance, audit jobs, cima jobs, acca jobs, corporate finance jobs, management accounting jobs, finance director jobs, finance recruitment agency directory, Top 50 accountancy firms, accountant salary survey
Computing Careers IT jobs, Programmer jobs, Developer jobs, IT manager jobs, Project manager jobs, SAP jobs, Oracle Jobs, Java Jobs, IT recruitment agency directory, Top IT Employers 2005
Inquirer Jobs Software Engineer Jobs, firmware developer jobs, electronics engineer jobs
Other titles in the Incisive Media network:
Business Technology websites: BusinessGreen . Computing . Computing Business . CRN . The Inquirer . IT Week . vnunet.com
Business & Finance websites: Accountancy Age . Best Practice . Financial Director . Management Consultancy
© Incisive Media Ltd. 2008
Incisive Media Limited, Haymarket House, 28-29 Haymarket, London SW1Y 4RX, is a company registered in the United Kingdom with company registration number 04038503
Loading...

ADVERTISEMENT