Sony XCP Rootkits suck
Monday, October 31st, 2005Mark Russinovich blew the whistle on Sony in his blog:
“The entire experience was frustrating and irritating. Not only had Sony put software on my system that uses techniques commonly used by malware to mask its presence, the software is poorly written and provides no means for uninstall. Worse, most users that stumble across the cloaked files with a RKR scan will cripple their computer if they attempt the obvious step of deleting the cloaked files.”
Sony, Rootkits and Digital Rights Management Gone Too Far
Sony has told the press that they’ve made a decloaking patch and uninstaller available to customers, however this still leaves the following problems:
- There is no way for customers to find the patch from Sony BMG’s main web page
- The patch decloaks in an unsafe manner that can crash Windows, despite my warning to the First 4 Internet developers
- Access to the uninstaller is gated by two forms and an ActiveX control
- The uninstaller is locked to a single computer, preventing deployment in a corporation