Saturday, November 05, 2005

Request for Information

If you have any information on Sony you would like to share, please feel free to add it to this post as a comment.

I will check it out and if warranted post it as a new topic.

Regards
Arthur Fatt

Friday, November 04, 2005

Sony DRM Exploit

OK, the first exploit has been published.

http://www.securityfocus.com/brief/34

Sony, let go of the need to control and you will win.

iTunes not itunes

Riddle me this Batman.

When is an iTunes Store not an iTunes store?

When it is in Australia or Japan.

Why?

They don't have any SonyBMG songs to sell.

Seems that some of the artists under contract to Sony are not very happy with the situation. And who can blame them. They are the ones losing.
http://apple.slashdot.org/article.pl?sid=05/08/11/1237236&tid=141&tid=176&tid=233&tid=3

Sony trying to dictate what you listen to

A head-butting exercise between two digital-age mastodons is blocking Australians from getting their own iTunes Music Store. The iTMS, which has sold close to half a billion songs since April 2003, is the only way the world’s 15 million iPod owners can legally buy downloadable music. The United States, European Union and Scandinavia all have an iTMS.

Australia doesn’t, and the reason is because SonyBMG Music is holding out.

“There’s one reason why Sony is holding out,” says a prominent music industry pundit. “And that’s because Sony’s also a hardware company and they want to push their own proprietary digital format.”

http://bulletin.ninemsn.com.au/bulletin/site/articleIDs/4DC115E462A7EF8ECA25702E0022FE20

Sony software compromises security

I was reading this page on the Sony website.
http://cp.sonybmg.com/xcp/english/updates.html

Quote
November 2, 2005 - This Service Pack removes the cloaking technology component that has been recently discussed in a number of articles published regarding the XCP Technology used on SONY BMG content protected CDs. This component is not malicious and does not compromise security.
End quote

They claim that the secretly installed software does not compromise security.
This is an absolute lie.

The software they install causes any file, folder, registry key or process that is prefaced with $SYS$ to be hidden from view. What do you call that. Of course it is a compromise.

I just drop executables onto a machine that has played a Sony CD, that are name $SYS$malicious.exe and you and your AV software will never be aware of it's presence.

Every hacker and script kiddie in the world knows about it. Therefore any system with Sony DRM is susceptible to attack from this vector.

Wake up Sony.

How does Sony get to block iTunes

How does Sony stop Apple from opening and iTunes store in a country?
If you know please share.

Seems they were able to in Australia.
Now I don't particularly care about Apple, but I do hate that Sony is dictating what is available in a country.

Sony hides malware on your computer

The details are here

http://www.sysinternals.com/blog/2005/10/sony-rootkits-and-digital-rights.html

Good one Sony