“A computer security firm said Thursday it had discovered the first virus that uses music publisher Sony BMG’s controversial CD copy-protection software to hide on PCs and wreak havoc,” Reuters reports. “Under a subject line containing the words ‘Photo approval,’ a hacker has mass-mailed the so-called Stinx-E trojan virus to British e-mail addresses, said British anti-virus firm Sophos. When recipients click on an attachment, they install malware, which may tear down the firewall and gives hackers access to a PC. The malware hides by using Sony software that is also hidden — the software would have been installed on a computer when consumers played Sony’s copy-protected music CDs.”
Reuters reports, “‘This leaves Sony in a real tangle. It was already getting bad press about its copy-protection software, and this new hack exploit will make it even worse,’ said Sophos’s Graham Cluley. Sony BMG’s spokesman John McKay, in New York, was not immediately available to comment.”
Full article here.
Advertisements: The New iMac G5 – Built-in iSight camera and remote control with Front Row media experience. From $1299. Free shipping.
The New iPod with Video. The ultimate music + video experience on the go. From $299. Free shipping.
Karma’s a bitch, huh, Sony?
Related articles:
Sony sued over copy-protected CDs – November 10, 2005
SonyBMG antics may well cause public to turn on them and turn many people onto Apple Macs – November 06, 2005
Report: Sony copy-protected CDs may hide Windows rootkit vulnerability – November 01, 2005
Analyst: Sony BMG’s boycott of Apple’s iTunes Music Store Australia won’t last long – October 24, 2005
Apple launches iTunes Music Store Australia – October 24, 2005
How to beat Apple iPod-incompatible Sony BMG and EMI copy-protected CDs – October 04, 2005
Japan music labels look to impose ‘iPod Tax’ while Sony, Warner still not signing with Apple iTunes – October 10, 2005
Why aren’t Sony, BMG, Warner, Victor making their artists’ music available on Apple’s iTunes Japan? – October 06, 2005
Sony and Warner holding out on Apple iTunes Music Store Australia – September 08, 2005
Musicians stage mutiny against Sony, defiantly offer music via Apple’s iTunes Music Store – August 10, 2005
Sony BMG and EMI try to force Apple to ‘open’ iPod with iPod-incompatible CDs – June 20, 2005
New Sony BMG copy-protected CDs lock out Apple iPod owners – June 01, 2005
Record company causes Apple to hit ‘pause’ on Australian iTunes Music Store – May 05, 2005
Don’t support BD-DVD and that is include PS3. Don’t buy Sony product.
I am piss after all the CD player and Walkman Cassette player I have bought.
The unfortunate hting here is that Sony’s protection scheme opens a door into the Mac OS kernel too…
kinda sucks – except that I don’t have to buy $ONY….
no more $ONY music for me…
MW: both – as in, $ONY is out to phuque both M$ and Apple
Advice to Sony:
Quit taking plays from the Microsoft playbook. Bad Karma, man.
It may be true that Sony/Suncomm can attempt to install the kernel extensiions, BUT it can never be done without you first entering your username and password.
Thus, you have to give your explicit authorization before it can happen.
MDN Word: consent as in “The windows version of the Sony CD does not ask for your explicit consent before installing rootkit apps.
The funniest thing is that in the latest Vista build Microsoft has eliminated the need to enter a username and password when you install applications. Instead replacing it with a “Yes I want to do this” button…guess what will the majority of Windows users do with that button? click. automatically click. not think about it click. why bother reading what the dialog box says click. get this thing out of my way click.
http://www.winsupersite.com/reviews/winvista_5231.asp
“Also, though User Account Protection (UAP) is still in there, it appears that Microsoft is going a less-aggressive route with requiring admin access. Instead of having to logon all the time now, you see a dialog that essentially asks you if you’re sure you want to perform that potentially horrible action (Figure). I need to speak with Microsoft before I can say what’s changed exactly. But I’d be shocked to discover that they’re backing down from UAP.”
Many have said it before and they will all be right…within hours of its release Vista will be plagued with viruses.
Could FairPlay be used in this way?
no more sony for me. if i want a sony artist ill get it by other means. you made me do it sony you stupid fkers.
“Sony BMG’s spokesman John McKay, in New York, was not immediately available to comment.”
No ****… he’s on a job interview.
What a lifethreatening, self-inflicted wound…why did you do it Sony?
MW: Press, as in press the eject button on Sony music CDs for good.
late post but…. Windows OS, installs without user knowledge Mac OS, needs explicit user permission to run and install. So what was that about security through obscurity? Sounds like its just built better to begin with