Sony finally withdraws CDs with DRM from shelves

Security Pipeline reports what I had predicted earlier. As an internationally renowned brand, Sony could ill afford the negative impact that was spreading like wildfire through the blogsphere. They have since realised that they made a mistake and withdrew those CDs with the DRM off the shelves.

However despite the change in their position, their troubles are not over. The company faces charges of deceptive advertising, illegal spyware distribution, and computer crimes in three lawsuits according to SecurityPipeline.

Security Pipeline | Sony Plays The Blues As Bloggers Turn Up The Volume

Even Foxtrot makes a point about SONY's DRM

While its not in the usual tone of my blog to trivialise current issues, I found that this particular cartoon strip by Foxtrot's Bill Amend brought home the dangers of how an unpopular method of implementation of an idea can result in it becoming the source of ridicule to others.

(cartoon has since been removed from source by cartoon publishers)

New Trojan Released to Exploit SONY's CD Music DRM

Following the previous post about Sony's new DRM, a new trojan has been reported to exploit the root kit software that the Sony's DRM technology installs when playing the music CD. The new Trojan called Stinx had been reportedly spammed to UK email addresses thereby raising the risk of computers there being compromised.

Apparently spokepersons for Sony claims that the risk is very low right now - as the CD has to be purchased in the US with the DRM technology built into the CDs there. Nonetheless, it is curious that has been openly admitted that their DRM does open the PCs of users to criminal hackers. I think Sony will be relooking carefully their strategy on the use of this version of DRM.

Silicon.com - New Trojan exploits Sony DRM anti-piracy tool

Sony's DRM - potential offences under the Computer Misuse Act?

An interesting development was reported by CNET today (do visit the link below). Sony was reportedly using a a copy protection technology that installs a DRM technology onto user's PCs. Apparently the mere listening of the CD music on the PC will launch the installation of the DRM software onto the PC without the permission of the owner.

It is reported that the software installs itself as a "root kit", which is a set of tools commonly used to make certain files and processes undetectable. Apparently root kits are considered by many as Trojan Horses. It was also reported that a Mr Mark Russinovich, who created a root-kit detection utility attempted to remove the DRM drivers discovered that the process actually broke his computer by disabling his CD drive.

Does two wrongs make a right? While it is wrong to rip music off a CD, the DRM technology which uses black hat technologies to covertly enter and install itself onto PCs makes out potential offences under the Singapore Computer Misuse Act (as well as the UK equivalent).

What about those who listen to the music on their PCs without ripping the CD? Their case against Sony is even morally stronger (I will post later what are the potential offences Sony faces under the CMA).

Interestingly as well, the fact that it damages the PC on removal - could also give rise to a separate civil cause of action for damage to property. I think if Sony does not rework their DRM software to only install on ripping process as well as provide effective and safe uninstall options, someone may eventually take out a private criminal prosecution as well as civil action for the damage to their PCs for this DRM technology.
DRM this, Sony! - CNET.com