Promo: B.Sc. Info Systems, Trinity
IT workers face the challenge of developing their communications, business and management skills.
» more
Movie studios need to get real
RealDVD does nothing new. It rips DVDs. But the movie studios don't like it and are suing.
» more
Web Pick: Periodic Table of Videos
Watch these lab rats rediscover their inner mad-scientist as they tour through the elements.
» more

SECURITY

New Trojan exploits Sony DRM anti-piracy tool

11-11-2005

by Silicon.com

Antivirus firms are reporting that masses of e-mails containing a Trojan that exploits Sony's digital rights management (DRM) program are circulating on the internet.

The Trojan, dubbed Stinx, has been mass-mailed to UK e-mail addresses but is able to hide itself if a computer has Sony's controversial anti-piracy root kit program installed, which is embedded on some CDs.

Graham Cluley, senior technology consultant for security firm Sophos, said: "By installing Sony's software it opens a vulnerability that hackers can exploit and in this case they have. From that point of view it is a bad thing regardless of the fact that it stops people stealing music."

Cluley said the spam seemed to be targeting UK businesses.

However, a spokesman from Sony said that European CDs have no copy protection software on them. He said: "I don't know how it would get onto UK computers. The only way it could happen is if you buy something from America. We are talking about a couple of copies in hundreds of thousands."

Earlier this month, security researcher Mark Russinovich told the BBC that Sony CDs are installing root kits on PCs to stop people from copying music illegally. Root kits are tools commonly used by hackers to embed malicious code into a computer.

Sophos is advising its customers to be cautious whether they have the Sony program installed or not, as Cluley said many people would not know if it's on their systems.

Once loose on a computer, the Trojan copies itself to a file called "$sys$drv.exe". Any file with a "$sys$" name cloaks itself using Sony's copy-protection code, thus making the malicious file invisible.

Dan Ilett writes for Silicon.com.
Reprinted with permission from Silicon.com

Click here to make ENN your home page

VIDEO REVIEW

Dell not dull; sees red
Dell adds a splash of colour to its latest laptop range, but is this enough, or do consumers want an edgier look? » Read more

ENN CORPORATE

Complete copywriting services
Do you need skilled writers to put together compelling prose for your company? Why not check out the new-look corporate services site from ENN and see how we can put our skills to your use. » Read more

<a href='http://openx.enn.ie/www/delivery/ck.php?n=af6c6082&cb=INSERT_RANDOM_NUMBER_HERE' target='_blank'><img src='http://openx.enn.ie/www/delivery/avw.php?zoneid=5&cb=INSERT_RANDOM_NUMBER_HERE&n=af6c6082' border='0' alt='' /></a>
<a href='http://openx.enn.ie/www/delivery/ck.php?n=a5c6ffca&cb=INSERT_RANDOM_NUMBER_HERE' target='_blank'><img src='http://openx.enn.ie/www/delivery/avw.php?zoneid=6&cb=INSERT_RANDOM_NUMBER_HERE&n=a5c6ffca' border='0' alt='' /></a>
<a href='http://openx.enn.ie/www/delivery/ck.php?n=a7dee0d0&cb=INSERT_RANDOM_NUMBER_HERE' target='_blank'><img src='http://openx.enn.ie/www/delivery/avw.php?zoneid=7&cb=INSERT_RANDOM_NUMBER_HERE&n=a7dee0d0' border='0' alt='' /></a>

Not a member yet?
Sign up free, click here
To change your ENN Newsletter and alerts preferences here

WHO'S WHO IN PR

Full listing of Irish PR firms, including high-tech specialists. » Click here

Promo: B.Sc. Info Systems, Trinity

Movie studios need to get real

Web Pick: Periodic Table of Videos