Home

How Sony invades your computer (poor Van Zant brothers)

When really nasty people want to take over your computer, they write a rootkit. A rootkit hides certain aspects of what your computer stores and what it does so that you don't recognize that it is there and that it owns your ass.

A very smart fan of the Van Zant brothers named Mark Russinovich discovered that a CD he bought on Amazon installs such a rootkit in order to implement their Digital Rights Management (DRM) copy protection scheme. The rootkit intrinsically changes the way your computer works by hijacking function calls to programs you want to run and doing something else with them. This particular rootkit is badly programmed, resource intensive, and breaks your computer if you happen to find and delete the files.

In other words, Sony owns your computer.

Furthermore, this mean mofo is hard to remove. Really hard. If you've never heard of the registry, and don't know what named pipes are, you'll simply never get rid of it. Your spyware removal software won't touch it, and only brilliant hackers with l33t m4d skillz stand a chance.

Worst of all, it opens up a large and beckoning window of opportunity for other attackers to leverage the breach in security that Sony created as soon as you put their CD in your CD drive.

Sony owns your computer.

So who is the real victim here? Let's see... have you ever heard of the Van Zant brothers? Maybe not, but they are probably great musicians who sing about ideals, ethics, love, emotions and other really cool human things. Would you buy their CD? Hell no! You'd read the reviews on Amazon.com and be dismayed that the majority of reviewers advise you not to buy the CD. Here's a sample from one review:

No offense to the brothers Van Zant, but I'll never buy this CD because it's copy protected. I don't have an MP3 player and I don't download music illegally, but I DO make mix CDs from my own discs, so I couldn't do that here. This is an infringement of my fair-use rights and I refuse to go along with it - and so should you.

So to me, the real victims are the musicians. Nobody will ever buy this CD on Amazon.com, they'd be crazy. And after reading about Sony's brain-dead DRM, I'll never buy one of their copy protected CDs. Never.

Link to the full story

PS. There are hundreds of CDs with this crap for sale.

Comments

Thu, 11/03/2005 - 18:32 — Robert Douglass

Sony releases patch to remove rootkit

Sony was caught with its pants down, and they know it. They released a patch but claim that no security threat was ever introduced. *Caugh*.

Cory Doctorow said it best:

What petulant jerks. Look, Sony, you got caught sleazing your customers' computers. Telling us that it wasn't so bad is just infuriating and insulting. An apology would have been better-received.

Link

Mon, 11/07/2005 - 19:21 — Robert Douglass

The eloquent folk at Slashdot...

They don't mince words:

These copy protection schemes are NEVER goign to work as long as the content is still available to play on regular cd players. Even if it's not, it will be hacked as long as some hacker thinks it might be an amusing way to spend an afternoon.

why are sony SO unbeleivably stupid as to think otherwise. They must be wasting hundreds of thousands of pounds on this utterly useless rubbish, that even the least technical of people can bypass.

These things are so childish no hacker would even bother with them, as stated this one even defeats itself!
It only takes one breach to distribute a copy, why piss off thousands of genuine paying clients?

Link

-Rob

Post new comment

The content of this field is kept private and will not be shown publicly.
  • Allowed HTML tags: <em> <strong> <cite> <code> <ul> <ol> <li> <dl> <dt> <dd> <blockquote>
  • You may post code using <code>...</code> (generic) or <?php ... ?> (highlighted PHP) tags.
  • Lines and paragraphs break automatically.

More information about formatting options