Vulnerability Alerts
SANS
 
Microsoft
 
CERT/CC
 
 
Latest Comments
"Concerned man's comments seem to intimate that if I'm using agents all will be well but the ..."
on Shavlik Technologies to broaden its patch management offerings
by Werner K | Nov 26, 2008 8:36 PM
 
"That will enhance Microsoft Office system, including SharePoint - good platform for enterprise ..."
on Companies have security to consider with in-the-cloud Office
by SGE | Nov 25, 2008 3:29 PM
 
"how many users allow per session? because the digital persona password manager allows only 10 ..."
on DigitalPersona Pro Workstation/Pro Server
by Daniel | Nov 25, 2008 12:14 AM
 
"security through obscurity...shows how detached HIPAA is from reality."
on Privacy breaches causing business instability
by priceOfFishInChina | Nov 20, 2008 1:19 PM
 
"I have been the recipient of Agent.JEN.Trojan through an email suggesting a UPS parcel (including..."
on Trojan disguised as UPS delivery note
by Vincent Laing | Nov 13, 2008 4:01 PM
Application Flaws

Sony caught playing with rootkits again

  • Email a Friend
  • Print Page
Related Articles
By Tom Sanders
Aug 28, 2007 2:00 PM
Tags: Sony | caught | playing | with | rootkits | again
The Sony devices feature an integrated fingerprint reader that allows the user to securely store information. Unlocking the information however requires the installation of special software on a Windows computer.

Among things, the application creates a hidden directory on the user's hard drive. At least some anti virus applications will be unable to access and scan the contents of this directory, claimed F-Secure researcher Mika Tolvanen. This potentially allows malware authors to hide their creations from security software.

The technology offers rootkit-like, a term that is used for applications designed to hide files and processes from the end user as well as the system.

Rootkits are best known for their use by malware authors, who use it to prevent detection and removal of their creations by security applications. The term originally referred to tools that allow attackers to gain root access to Unix systems without the owner's knowledge, but has since taken on the meaning of cloaking technologies.

The Microvault case closely resembles a highly publicised security scandal from 2005. Sony at the time used rootkit technology to hide digital rights management software from end users when they tried to play certain audio CDs on a Windows computer. The XCP software, developed by First 4 Internet, was generally considered to be clumsily architected.

Sony initially denied that its technology comprised any security risk, but quickly subsided when malware emerged that exploited the flaw. The firm paid several millions settling lawsuits.

Sony's entertainment division at the time deployed the rootkit technology to prevent users from uninstalling the digital rights management technology, an action that critics charge to be at odds with fair use.

In the case of the Microvault memory keys, F-Secure suggested that the file could be hidden to ensure the accuracy of the data signatures, thereby protecting the data stored on the device.

"We feel that rootkit-like cloaking techniques are not the right way to go here," Tolvanen commented.

F-Secure said that it was unsuccessful in contacting Sony.

Sony didn't immediately respond to request for comment.

Copyright © 2008 vnunet.com

 
Ads by Google
Thoughts on this article? Add a comment below.
Be the first to comment on this article.

Report this comment as offensive:

   * Indicates information we require to process your submission.

Name: *
Email: *
Reason for offense: *
Your report will not be displayed.  
Name:
*
 
Email:
(will not be displayed)
*
 
Comment:
(HTML not permitted)
*
 
Validation
*

Enter the code you see below:

 

 
 
 
 
 
Tripwire - Click here to win an iTouch
 
 
Vulnerabilities & Exploits Whitepapers
 
Popular Tags
avg data email enterprise flaw google hacker hackers identity malware microsoft obama patches security software spam symantec systems virus windows