Inside the Spyware Scandal Part 3


Despite the warnings from FSecure in late October, Sony BMG was surprised by the controversy. Indeed, for days after Russinovich's analysis hit the news, company executives showed little understanding of the fury it was arousing in the hearts of many of its customers. "Most people, I think, don't even know what a rootkit is, so why should they care about it?" Sony BMG's Hesse said in an interview with National Public Radio on November 4.

But for the owners of the more than two million XCP-protected discs sold by Sony BMG between January and November, the reports came as a shock. Security flaws in commercial software are common; Microsoft's products, for example, are so widely used that even the tiniest bug will eventually be discovered and exploited by a malware author, so the software giant publishes updates and patches on a monthly basis. But no software or media company of the stature of Sony BMG had ever distributed a program that, in the judgment of security experts, was deliberately designed to mimic malware. Technology Review: Emerging Technologies and their Impact

Linked by shanmuga Thursday, 18th May 2006 9:48PM