By Joris Evers, 14 November 2005 08:35
NEWS
Microsoft will update its security tools to detect and remove part of the copy protection tools installed on PCs when some music CDs are played.
The Redmond, Washington, software maker has determined that the "rootkit" piece of the XCP software on some Sony BMG Music Entertainment CDs can pose a security risk to Windows PCs, according to a posting on Saturday to a Microsoft corporate blog.
The Sony BMG software installs itself deeply inside a hard drive when a CD is played on a PC. The technology uses rootkit techniques to hide itself. Experts blasted the cloaking mechanism, saying it could be abused by virus writers. The first remote-control Trojan horses that take advantage of the veil provided by Sony BMG have surfaced.
To protect Windows users, Microsoft plans to update Windows AntiSpyware and the Malicious Software Removal Tool as well as the online scanner on Windows Live Safety Center to detect and remove the Sony BMG software, the software maker said in its blog.
Windows AntiSpyware is Microsoft's spyware-fighting software that is currently available as a test version and used by millions of people worldwide. Microsoft provides weekly updates for Windows AntiSpyware. The Windows Malicious Software Removal Tool is updated monthly and is part of Microsoft's monthly patch releases.
Detection and removal of the rootkit component will also be in Windows Defender, the forthcoming update to Windows AntiSpyware that will also be part of Windows XP successor Windows Vista, Microsoft said.
In its move to detect and remove the Sony BMG rootkit, Microsoft follows other makers of security software. CA and Symantec are among those that offer at minimum detection capabilities in their products. Sony BMG itself has also provided a patch to fix the security problem and still allow CDs to be played on PCs.
On Friday, Sony said it had halted production of CDs with the controversial technology, which is designed to limit the number of copies that can be made of the CD and to prevent a computer user from making unprotected MP3s of the music. Sony does still produce CDs that use a different copy protection scheme.
Joris Evers writes for CNET News.com
Comments
There are 5 comments. Join the discussion
1. Dom
Oh the irony ! Microsoft is about to implement anti DRM tool for Windows XP while at the same the time is working to have DRM in it's next version of Windows !
2. Zakala
So there you have it - you may actually be more likely to catch a computer virus by playing a legitimately purchased CD than by downloading the tracks from a P2P network.
Well done Sony - a multinational screwing it's customers again.
And well done Microsoft for targeting the pernicious code responsible. Now you just have to address the issues in your own software.
3. Steve Berry
Sounds like a perfect MS strategy to me.
I honestly can't believe what Sony did and I guess they're gonna' get what's coming.
I'm pretty sure MS are aware how "sensitive" the DRM issue is, but ultimately they have to protect their own products.
Sony will eventually refocus and will probably implement a DRM system minus the public-backlash.
Just a shame they didn't have the common-sense to show some foresight.
4. James Button
Isn't it against the law in the USA to remove 'protection that is used to preserve, and reserve the limitations applied to any and all instances of articles 'protected' under the 'Royalties' system
5. Graham Coles
Regarding James Button's comment on the legality of removing the code in the US, isn't it against the law (Computer Misuse act?) to install it in the first place on a user's computer in the UK- especially if as has been suggested, the code is dubiously written and liable to blue screen the PC.
Could be a laugh a minute this, Sony sues Microsoft under the disreputable DMCA for disabling it, Windows users take Sony to court for preventing their antivirus software from detecting a harmful virus that destroys their machine and users in the UK sue Sony for installing a rootkit in contravention of the law.