Sony can't catch a break after its infamous rootkit scandal back in 2005. In fact, we know from talking to security researchers and black hats alike that Sony is under the careful eye of many as a result of that major screwup. Now, a new story has come out involving Sony's biometric Micro Vault USM-F thumb drive, which apparently contains a rootkit that could potentially allow hackers to compromise users' PCs.Last time, it was arrogance. This time it appears more ineptitude, in trying to secure its fingerprint verification software, it opened up a similar security hole as it did two years ago.
"The apparent intent was to cloak sensitive files related to the fingerprint verification feature included on the USB drives," Kapoor and Purdy wrote. "However, in this case (*cough* AGAIN! *cough*) the authors apparently did not keep the security implications in mind."
Monday, September 03, 2007
Another Sony rootkit worms its way to the surface