Sony CDs Install Rootkit on Your Computer! BMG XCP2 DRM AFU!

The Internet Patrol default featured image
Share the knowledge

Sony BMG is on everyone’s lips this week, and for once they aren’t talking about the PSP or music downloads.

This week they are talking about the fact that Sony has secretly embedded First4Internet’s XCP2 rootkit-like software on their CDs, which while perhaps intended only for digital rights management (DRM), actually not only spies on what you are doing and reports that back to the Sony BMG mothership, but it also opens up your computer to risk by allowing other, even more malicious spyware and other programs to slip in undetected and take over your machine’s processes.

Now, to be sure, I doubt that Sony intended this situation when they arranged with First4Internet to use their XCP2 on Sony BMG CDs. Sony would tell you that all they were trying to do was make sure that you used only their media player with their CDs on your computer. Nevermind that it’s your computer, you paid good money for the CD, and so long as you aren’t copying and pirating their material, with what you choose to view the material should be none of their business.

This was all blown wide open when Mark Russinovich over at Sysinternals posted an extremely detailed analysis of what he found after discovering the Sony rootkit on his own computer.

Said Mark, on his blog, of what he found, “The entire experience was frustrating and irritating. Not only had Sony put software on my system that uses techniques commonly used by malware to mask its presence, the software is poorly written and provides no means for uninstall. Worse, most users that stumble across the cloaked files with a RKR scan will cripple their computer if they attempt the obvious step of deleting the cloaked files.”

The Internet Patrol is completely free, and reader-supported. Your tips via CashApp, Venmo, or Paypal are appreciated! Receipts will come from ISIPP.

CashApp us Square Cash app link

Venmo us Venmo link

Paypal us Paypal link

The response among the Internet community has ranged from outrage, to surprise that anyone is surprised to, already, at least one lawsuit.

Where this will all end is anybody’s guess, but in the meantime, if you choose to purchase Sony BMG CDs, and to put them in your computer, well, buyer beware.

You can read Mark Russinovich’s extremely detailed write-up of his discovery [Page no longer available – we have linked to the archive.org version instead].

In the meantime, Russinovich has documented SonyGate 2, his effort to uninstall the Sony rootkit and Sony’s completely unacceptable response, [Page no longer available – we have linked to the archive.org version instead].

Recommended reading:

Rootkits : Subverting the Windows Kernel

Get New Internet Patrol Articles by Email!

The Internet Patrol is completely free, and reader-supported. Your tips via CashApp, Venmo, or Paypal are appreciated! Receipts will come from ISIPP.

CashApp us Square Cash app link

Venmo us Venmo link

Paypal us Paypal link

 


Share the knowledge

2 thoughts on “Sony CDs Install Rootkit on Your Computer! BMG XCP2 DRM AFU!

  1. After trying to rip the SONY BMG title ’13 Steps’ by A Perfect Circle (Tool for girls, if you ask me) so he could listen to it on his SONY MP3 player – a CD that HE ACTUALLY OWNS by the way, he found that Windows XP could no longer detect his CD-ROM drive – innocently – he thought the CD Drive was kaput so bought a new one. This was also undetectable and only after an hour of two of me scouring the Internet for him could I find that by removing XCP2 would XP begin detecting the CD-ROM drives again. This is just another example of how over-zealous security methods by money-grabbing corporations punish only the law-abiding, silent majority, normal customer. Any badass cd-pirate would kick xcp2’s ass anyday. However – my friend is not that type of person – so why does he get punished for someone else’s wrongs? Sony are tramps.

  2. I had a spat with BMG about an earlier version of their copyright control software on a CD as I use Sony’s SonicStage software to change all my CD’s into ATRAC3 files for use on my media PC and my NetMD. BMGs response to my complaint then was to offer a non-copyright version of the CD if I sent them my proof of purchase. By the time they responded, the MP3s were available online.

    It’s MY PC, I paid for the CD, I paid for the software and I want to use it HOW I WANT! Sony – when are you going to realise that you’re damaging your own reputation with these repeated anti-piracy faux-pas?

Leave a Reply

Your email address will not be published. Required fields are marked *

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.