Sony RootKit Still A Problem? 268
XMilkProject writes "Current research indicates that some "350,000 networks--many belonging to the military and government--contain computers affected by [Sony's rootkit]." This is down from over half a million last month. "The security researcher worked from a list of 9 million domain-name servers.. asking each to look up whether an address used by the XCP software--in this case, xcpimages.sonybmg.com--was in the systems' caches." Will Sony face future repercussions for this potentially long-term damage?"
Repercussions? Nah. (Score:3, Insightful)
Probably not. They're already getting off somewhat easy for the original hubub.
Settled too soon. (Score:5, Insightful)
If you look at the settlement in the New York District court it is nothing more than a slap on the wrist. Sony knowingly infected computers with what amounts to a trojan horse. In return they have to pay a little money and promise not to do it again. That's insane when you consider the witch hunts that have taken place for 16 year-old kids releasing a virus. Sony needs to pay and pay dearly for their deliberate criminal actions. The government always wants to send hackers a strong message...well then the same applies to corporations!
http://religiousfreaks.com/ [religiousfreaks.com]Repurcussions? No. (Score:4, Insightful)
"Will Sony face future repercussions for this potentially long-term damage?"
No they won't because they're a huge multinational corporation who will probably layoff some employees and reward their top execs from the whole ordeal. I'm not trying to be some hippie about this, it's just the way the world works.
Of Course, that is Sony's Security Policy (Score:3, Insightful)
Simple answer.. (Score:3, Insightful)
Of course not. They may pay a (relatively) small fine or two, but a quick a donation to a politician here and there, and that'll be all she wrote.
Re:Makes you wonder.... (Score:5, Insightful)
Problem not eliminated (Score:4, Insightful)
I personally have seen this at several Borders stores in my area, and each time I mention this to the management I recieve blank "deer in the headlights" looks.
End result (Score:5, Insightful)
Sony == Dangerous to my PC
What a great way to promote a brand.
Re:Problem not eliminated (Score:5, Insightful)
The retail checkout line is not the place to wage these types of battles.
Sadly, no. (Score:5, Insightful)
If consumers were smart, they'd go buy a Nintendo Revolution - or even an Xbox - and intentionally skip the next Playstation. Unfortunately, they won't, because their souls are fueled by acquisition and shiny-new-toy syndrome.
No. (Score:2, Insightful)
No. Who do you think pays our politicians' wages? Are they going to bite the hand that feeds?
One point, one question (Score:2, Insightful)
What the hell...300,000 people are placing music CDs at work? No wonder our government gets nowhere - they are all busy listening to music and playing games. Get a regular CD player people - they aren't that expensive.
Re:Makes you wonder.... (Score:5, Insightful)
Once upon a time, bringing in the CD would have been the safest way to listen to music. Nothing can be copied to a CD, and nothing could be brought in on a pressed CD other than music. Nothing for Military Security to be worried about. Ipods and other MP3 players could potentially be used to sneak data out.
Of course now with the DRM crap on the "CD", this is no longer true. The once friendly store bought CD is now a potential risk. Way to go Music Industry! And you wonder why sales are down in 2005 from 2004...besides crappy offerings.
Comment removed (Score:3, Insightful)
Re:Get Back On Our Own - Boycott Sony (Score:3, Insightful)
But then, the division that makes the PS2 is fairly disparate within the company from the one you're attempting to hurt. But then you've already admitted that you don't buy CD's, the record company couldn't really care less about you. Still- why attempt to harm the folks within the company who make a cool product for the actions of another part of the company which they have no say in?
What I don't and never have understood is.. (Score:1, Insightful)
People who download music won't be affected, because they are downloading (IE Not buying the infected CD's)
So, just who are they trying to spy on? The customers who are giving them money and doing what they want?
It's so... 180 degrees out...
Re:Problem not eliminated (Score:4, Insightful)
This battle is one of propaganda as much as anything else. If you use the enemy's terminology, you've already lost.
These are rootkit infected CDs. Use that phrase in conversation with your non-techie friends. 'Damn, I got an infected CD from Sony.' They'll not grasp all the geek details, but they'll get the picture.
Similarly, call what it is trying to do 'Digital Restrictions Management' whenever you have to explain what 'DRM' is. It's a far truer portrayal of what's going on.
Re:End result (Score:2, Insightful)
Many viruses don't achieve this level of penetrati (Score:2, Insightful)
I think this is a larger problem - that Sony can do what is clearly an unauthorised incursion into the core of someone's computer without being sued.
2.1 million cds have been sold. So something of the order of magnitude of 2.1 million computers have been infected by this rogue code. Many viruses don't achieve this level of penetration!!!! I doubt the combined force of slashdot readers has achieved this level of penetration either! hehe
If an individual had perpetrated this, whether or not he had the best intentions he would be arrested immediately. But Sony because it has such a strong brand, has only been sued in a few US states by a few Attourney Generals. Despite this being without any doubt prosecutable at the highest level.
I hate to whinge on about this but why on earth are coporations less obliged to follow the law of the land than individuals!! Its a joke.
Re:exactly correct (Score:4, Insightful)
Re:Makes you wonder.... (Score:3, Insightful)
Re:Makes you wonder.... (Score:3, Insightful)
There's a flaw in that logic somewhere, but I can't put my finger on it...
The right thing: (Score:3, Insightful)
If all of this "cloaking" crap were to be made irrelevant, then these kinds of things would no longer be a security issue - it would return administrative control over machines to the machine's owner. Whether that's Symantec's cloaking for their recycle bin, or whether it's Sony's rootkit, or anything else.
Computer owners don't need a corporate nanny protecting them from shooting themselves in the foot. Good software design does that. Not sneak tactics.
I'm not sure how the EULA is relevant... (Score:3, Insightful)
Re:Problem not eliminated (Score:2, Insightful)