Real Story of the Rogue Rootkit

Posted by Doug Thu, 17 Nov 2005 12:22:40 GMT

Here’s an article written by Bruce Scheier talking about the story behind the story. For those of you who don’t know, Sony BMG has distributed software on their music CDs that automatically installs on Windows computers that is hidden, spys on you and reports back to Sony, and can be exploited by others to take control of your computer. There’s a fairly sordid tale of how this has played out.

As usual Bruce thinks about things a little differently. Being part of the security industry, he looks at how his industry has responded to this incident:

That all the big security companies, with over a year’s lead time, would fail to notice or do anything about this Sony rootkit demonstrates incompetence at best, and lousy ethics at worst.

That’s a fairly damning statement, but well grounded. Why didn’t the various virus protection companies notice the Sony rootkit for the year it had been in the wild?

Posted in ,  | Tags , ,  | 1 comment

Comments

  1. chad said about 17 hours later:

    Nice blog

RSS feed for this post

Comments are disabled

Copyright 2001 - 2005 by Lathi.net and Doug Alcorn

Creative Commons, Some Rights Reserved Ruby on Rails Developer Powered by Debian GNU/Linux Powered by Typo