Sony Rootkit Part 2

Discussion in 'malware problems & news' started by berng, Nov 15, 2005.

Thread Status:
Not open for further replies.
  1. berng

    berng Registered Member

    Joined:
    Sep 11, 2005
    Posts:
    252
    Location:
    NJ, USA
    Previously on the Will Eset add detection for Sony's "rootkit"? thread, which was closed by Ronjour, we talked about the software supplied by Sony to uninstall their rootkit.

    Quote:
    “Originally Posted by Joliet Jake
    First4Internet, the company that wrote the software that Sony uses said they would supply all anti-virus companies with code that would enable them to detect it.”

    My Quote:
    “With the way they implemented this, I wouldn't trust anything they gave out.”

    Now, unfortunately, it seems I may have been correct. The latest is that the uninstall leads to greater security risks.

    From Brian Krebs Blog
    "Alex Halderman and I have confirmed that Sony’s Web-based XCP uninstallation utility exposes users to serious security risk. Under at least some circumstances, running Sony’s Web-based uninstaller opens a huge security hole on your computer. We have a working demonstration exploit. ... In the meantime, we recommend strongly against downloading or running Sony’s Web-based XCP uninstaller."
    http://blogs.washingtonpost.com/securityfix/2005/11/multiple_securi.html


    That's why I think its best that independent third parties, like ESET, take care of these type of security issues.
     
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.