Sony to exorcise 'rootkit' from USB drives
Thumbs down
Regcast training : Hyper-V 3.0, VM high availability and disaster recovery
Sony is prepping an update to remove rootkit-like technology that shipped with a range of USB storage devices featuring fingerprint authentication.
The Sony MicroVault USM-F fingerprint reader software that comes bundled with the USB stick installs a hidden directory under Windows. Files in the directory might be hidden from some antivirus scanners, potentially creating a hiding place for malware that virus authors could seek to exploit.
The tactic, a misguided attempt to protect fingerprint authentication from tampering and bypass, was uncovered by net security firm F-Secure. Three Sony MicroVault USB stick models with fingerprint readers contain the software. They are no longer in production but are available still for purchase.
According to Sony, the blame lies with code supplied by a third-party developer from China. An update to resolve the problem is scheduled for release in mid-September.
The behaviour of the MicroVault software is similar to - but less easy to exploit than - that created by the notorious DRM technology that shipped on Sony CDs. The latter was a practical rootkit risk that was exploited by a number of Trojans.
In 2005 Sony BMG created a public-relations and legal nightmare when it emerged that digital rights management (DRM) software installed on some of its music CDs created a handy means for hackers to hide malware from anti-virus scanning programs. Under pressure, Sony recalled discs loaded with the technology and set up an exchange program for consumers. The music label still faces class action lawsuits by users who allege that their PCs have been damaged by the technology.
Throwaway comments made by Rick Rubin, a music producer and recently appointed co-head of Columbia Records, which is owned by Sony BMG, this week are likely to further inflame the controversy. He told the New York Times that the technology "recorded information about whoever bought the record", indicating that some kind of "spyware" also came with the cloaking technology introduced by Sony's DRM software. ®
COMMENTS
SONY -- good for nothin'
Anyone remember in 2000 when Sony remade and released (ie: copied in the most plagiarising manner) the tune Knights of the Jaguar by DJ rolando, note-for-note because he wouldnt give Sony permission to release it?!?
http://www.renegaderhythms.com/home.html?main=http://www.renegaderhythms.com/articles/ur/ur.html
The downright, no good, thievin' b*****ds. Havent trusted them ever since.
PPS
Is it conceivable that Rockefeller's Standard Oil Company of New York simply handed the SONY acronym to a small-ish Japanese firm in the late 50's?
Is it more likely that they struck a deal of some kind with Totsuko? Maybe buying out the company, or ... ?
After all ... oil makes plastic ... and plastic makes radios ... ?
I'm not making this stuff up! ;)
@Doc Dish
Web references? We don't need no stinkin' web references ...
"SONY acronym is from Rockefeller’s company Standard Oil New York. Rockfeller’s Chase bank was financing rebuilding of Japan and there were many crates on the tarmac of the airport in Japan, crates that were labeled S.O.N.Y. The Japanese businessman had already visited the USA and determined that imported electronics were low quality and he could make a new company featuring quality, but what to name it? and to not name a clumsy Japanese name like Yamaha or Suzuki or something and he saw the Standard Oil company of New York labeled S.O.N.Y. shipping crates and that is where he got the name. Rockefeller family had Standard Oil company for fifty years and he was heavily involved in financing the rebuilding Japan. SONY businessman wanted a powerful company with a name acceptable to the USA market. Standard Oil company of New York."
http://digg.com/gaming_news/Behind_the_names_of_our_favorite_companies_and_consoles?t=7320763#c7320763
"The name SONY began to appear at the airport after the flood of post-war recovery money, and one of the meanings of those four letters is "STANDARD OIL OF NEW YORK". That has always been SONY or SOCONY. (The Standard Oil Company of New York)
THE ROCKEFELLERS had arrived to re-finance Japan.
What this meant was that during those "MacArthur" days Rockefeller money was flooding Japan; and money such as that (Yes, I'm using the term MONEY) kind of "money" began the amazing job of rebuilding Japan."
Matthew Alice
Sony-san [Published: May 17, 2007]
heya matt...
A friend of mine (who's more often right than wrong) claims that Sony Corporation was originally founded by Shell Oil of New York during the occupied-Japan period after WW2. I find it hard to believe that I have never heard that before, but then I've never heard of a Japanese named "Sony" either. Is my friend right, once again?
-- Jeff, via e-mail
Lay this on your friend the next time he's pummeling you with facts. 1. There is no such company as Shell Oil of New York. 2. There was a Standard Oil of New York. 3. Oil companies have their hands full already; why would they want to go into the consumer electronics business? 4. Sony's original name was Tokyo Tsushin Kogyo, a.k.a., Totsuko (founded, 1946, by two guys in Japan who repaired radios). 5. Totsuko marketed products with the brand name Sony (or Soni), 1950. 6. "Sony," from sonus, Latin for "sound." 8. Totsuko dominated Japanese market. 9. Americans couldn't remember or pronounce Totsuko. 9. Corporate name changed to Sony, 1958, in order to dominate U.S. market. 10. The plan worked. "
http://www.sdreader.com/php/ma_show.php?id=1074
So ... maybe you're right, maybe not ... Don't you just love the Internet? ;)
IT infrastructure monitoring strategies
Agentless Backup is Not a Myth
Top 10 SIEM implementer’s checklist
Steps to Take Before Choosing a Business Continuity Partner
Requirements Checklist for Choosing a Cloud Backup and Recovery Service Provider
