also @ TechSpot: Most Anticipated PC Games of 2010: From A to Z

Most Popular

Top Stories Commented  Featured 

ATI Radeon HD 5570 Review  featured

TechSpot's PC Buying Guide: Always up to date!  featured

Windows 7 overtakes Vista among enthusiasts, plus other interesting trends

Microsoft rumored to showcase Windows Mobile 7 next week with Zune-like interface

IBM launches next generation Power 7 CPU, servers

AMD's six-core Thuban to have feature like Turbo Boost?

Google to launch Twitter-like service for Gmail

Intel unveils Itanium 9300 series enterprise processors

More Top Stories

Downloads & Drivers

Downloads   Drivers  

Super Utilities Professional 9.8.8

Blaze Media Pro 9.10

F-Secure Internet Security 2010 10.12

IncrediMail 6.0.4 Build 4480

Cobian Backup 10.0.0.244 Beta

More Downloads

TS Community

  User Gallery   Recent Discussion

I love a girl in a
uniform
by luvhuffer
Tom Clancy's
H.A.W.X.
by red1776

I knew there was
always a competition
between those two...
by God Of Mana
CODMW2 Suburban
warfare
by red1776
More at the Forum

Subscribe

Newsletter Our Feeds

Receive weekly updates on new articles, news and contests in your mail!

Email address:

Industry News

Sony DRM used for malware!

By Derek Sooman, TechSpot.com
Published: November 10, 2005, 9:04 AM EST
Well, didn't we all see this coming?! The use of rootkit technology in DRM software bundled with Sony CDs has been exploited by virus writers! A new variant of the Breplibot Trojan takes advantage of the fact that Sony-BMG's rootkit DRM technology masks files filenames which start with "$sys$", by dropping the file "$sys$drv.exe" in the Windows system directory.

This means, that for systems infected by the Sony rootkit, the dropped file is entirely invisible to the user. It will not be found in any process and file listing. Only rootkit scanners, such as the free utility RootkitRevealer, can unmask the culprit," warns Ivan Macalintal, a senior threat analyst at security firm Trend Micro.
Arriving in an email, the malware appears to originate from a reputable business magazine. If installed, the Trojan installs an IRC backdoor on affected Windows systems.

Related Stories

Post a comment
RSS