Slashdot Mirror

← Back to Stories (view on slashdot.org)

Trojan Using Sony DRM Rootkit Spotted

Posted by Zonk on from the gift-from-sony-to-you dept.

Analise writes "The Register reports on the first trojan using Sony's DRM rootkit. A newly discovered variant of the Breplibot trojan makes use of the way Sony's rootkit masks files whose filenames begin with '$sys$'. This means that any files renamed this way by the trojan are effectively invisible to the average user. The malware is distributed via an email supposedly from a reputable business magazing requesting that the businessperson verify his/her attached 'picture' to be used for an upcoming issue. Once the payload is executed, the trojan then installs an IRC backdoor on affected Windows systems."

2 of 597 comments (clear)

  1. To all the LIARS at Sony Public Relations by Jtheletter · · Score: 0, Redundant

    Told ya so.

    --
    -- I'm not a pessimist, I'm a realist. It's not my fault that life sucks so much. --
  2. Re:Jobseekers rejoice! by Surt · · Score: 0, Redundant

    That's like trying to claim the scientists who design weapons aren't responsible when the people they work for decide to use them.

    --
    "Who is the Journal of Quantum Physics going to believe?" --Stephen Hawking