Hacker websites are using Sony's DRM uninstaller in an attempt to take over Windows PCs. Under pressure, Sony recently released a tool to remove the rootkit technology installed when users play Sony BMG CDs on Windows PCs. This happened after it was shown Sony's DRM code (First4Internet XCP program) created a handy means for hackers to hide malware from anti-virus scanning programs.

Several malware variants have been created that try to hide with the help of the Sony DRM cloaking technology. Coding errors in the malware mean none have been particularly successful. In fact, work by security researchers suggest that a vulnerable ActiveX control in Sony's DRM uninstaller is a greater security risk than the original Sony rootkit.

To remove the DRM software entirely is a far trickier proposition that security researchers have only partially answered. An expert might (with effort) be able to remove the software but for an average user the situation is quite hopeless, and getting more complicated by the day. ®

Related stories

• Sony to exorcise 'rootkit' from USB drives (4 September 2007)
• Sony bundles rootkit-like software on USB drive (29 August 2007)
• How fat is my DRM? (20 December 2006)
• Judge approves Sony rootkit settlement (23 May 2006)
• Don't break DRM even if it 'threatens lives' (21 March 2006)
• Researcher: Sony BMG rootkit still widespread (16 January 2006)
• MS releases IE überpatch (14 December 2005)
• Sony BMG 'diligently re-evaluates' CD anti-piracy tech (12 December 2005)
• Intel readies rootkit- rooting hardware (9 December 2005)
• SonyBMG backtracks on buggy bug fix (9 December 2005)
• Sony opens up over another CD security hole (7 December 2005)
• Sony's DRM woes worsen (30 November 2005)
• Sony fiasco: More questions than answers (23 November 2005)
• Analysis Sony unsinged by rootkit CD fiasco (22 November 2005)
• Texas puts Sony BMG in its sights (22 November 2005)
• Updated Gaffer tape defeats Sony DRM rootkit (21 November 2005)
• EMI irks Apple over iPod anti-rip CD compatibility claim (18 November 2005)
• Sony's CD rootkit infringes DVD Jon's copyright (18 November 2005)
• Sony in USB lead porn punt shocker (17 November 2005)
• Sony pulls rootkit DRM CDs (16 November 2005)
• UK inquiry into DRM and the law (15 November 2005)
• Sony rootkit DRM: how many infected titles? (15 November 2005)
• Sony suspends rootkit DRM (12 November 2005)
• Sophos develops Sony DRM unmasking tool (10 November 2005)
• Sony hit by lawsuits over root kit (10 November 2005)
• First Trojan using Sony DRM spotted (10 November 2005)
• Updated Sony to offer patch for 'rootkit' DRM (3 November 2005)