Full Disclosure mailing list archives

Re: the "Sony/BMG" virus

From: bkfsec <bkfsec () sdf lonestar org>
Date: Fri, 11 Nov 2005 10:03:08 -0500

Todd Towles wrote:

How to use Sony cloaking

1) Write standard virus/trojan
2)  Trick poor person to run on computer (easy right?)
3) Name it with $sys$
4) It is now cloaked by the Sony DRM.

Isn't too hard...you will see more and more, it won't be long before
spyware is using it to hide as well. Is it good? No, any virus or
spyware can have it's own rootkit hooks if they wanted. But if they use
Sony, they can claim they weren't not trying to hide..."some other
software" was hiding them. Botnet admins like smaller coded bot...no
need to add any code...just a file renamed...man even a folder rename
for that matter

Thanks Sony...

Sony needs to pay big for this. I'll never buy a Sony/BMG item again...no apology is enough.

The way I see it, this is no different than a company orchestrating amass breaking and entering on all of their customers. This is like ifMatag hid the Matag man* INSIDE the dish washer so that he could rummagethrough your home in the middle of the night.

There is no excuse for what they've done... and there needs to be a veryreal public acknowledgment and discussion about what to do about theRIAA/MPAA -- let's face facts; what Sony has done is not an isolatedcase. This is only the logical conclusion in a string of damn near orshould be criminal actions either committed or proposed by the big medianames of the world.

They need to be reminded that the consumer base are not cattle to beused. They exist to service us, not vice versa... and the base ofcorporate leadership which harbors the idea that we exist to supply themwith money exclusively... the ethically challanged of our world if youwill... must be purged from all positions of power, whatever the cost.


This is only a symptom of a greater problem.

            -bkfsec

* Only an example. I have no intention of maligning Matag with it.p.s. Some people refuse to say that this is a malicious action on Sony'spart. Now I'm going to speak truth to the situation. There is nomistake that this is a malicious act against their customers. If it wasnot malicious, they would not have had to hide it.


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

the "Sony/BMG" virus Michael Holstein (Nov 11)
- <Possible follow-ups>
- Re: the "Sony/BMG" virus Fergie (Nov 11)
  - Re: the "Sony/BMG" virus Michael Holstein (Nov 11)
- RE: the "Sony/BMG" virus Todd Towles (Nov 11)
- RE: the "Sony/BMG" virus Todd Towles (Nov 11)
  - Re: the "Sony/BMG" virus bkfsec (Nov 11)
- RE: the "Sony/BMG" virus Fergie (Nov 11)
  - Re: the "Sony/BMG" virus xyberpix (Nov 12)
- RE: the "Sony/BMG" virus Todd Towles (Nov 11)
  - Re: the "Sony/BMG" virus Kenneth Ng (Nov 11)
    - Re: the "Sony/BMG" virus bkfsec (Nov 11)
    - RE: the "Sony/BMG" virus Aditya Deshmukh (Nov 11)
    - Re: the "Sony/BMG" virus bkfsec (Nov 12)
    - Re: the "Sony/BMG" virus Buford T. Pisser (Nov 11)
    - Re: the "Sony/BMG" virus Greg (Nov 11)
  - Re: the "Sony/BMG" virus bkfsec (Nov 11)

(Thread continues...)