Virus Writers Exploit Sony Anti-Piracy Software
Anti-virus maker Sophos is reporting that it has spotted an e-mail going around that tries to exploit the controversial file-hiding abilities of anti-piracy software embedded on some of Sony BMG’s music CDs.
According to Sophos, the e-mail, posing as a message from a British business magazine, begins:
“Hello, Your photograph was forwarded to us as part of an article we are publishing for our December edition of Total Business Monthly. Can you check over the format and get back to us with your approval or any changes? If the picture is not to your liking then please send a preferred one. We have attached the photo with the article here.”
If the recipient has Sony’s anti-piracy installed on his or her machine and happens to click on the file attached to the e-mail, the computer is infected with a Trojan horse that copies a file to the victim’s machine — “$sys$drv.exe.”
As Security Fix has noted in past posts, the Sony software successfully hides any file with the “$sys$” convention in it.
Security Fix – Brian Krebs on Computer and Internet Security – (washingtonpost.com)