Network Security & Hardware - eWeek


Battery 500 Project Charged Up over All-Electric Cars
Charting the Final Frontier--Google Maps for Indoors
Get Smarter Technology on Your Mobile!
  Network Security & Hardware


The Hidden Risks of Demo Discs



 By: Libe Goad
2004-12-03
Article Rating:starstarstarstarstar / 0


There are 0 user comments on this Network Security & Hardware story.


  Table of Contents:
  1. The Hidden Risks of Demo Discs
  2. ' Trojans and Viruses '

Rate This Article:
Poor Best
The Hidden Risks of Demo Discs
( Page 1 of 2 )

One demo disc handed out by Sony completely erased its users' PS2 memory cards. And with people sharing information via optical media more and more, will this return as a popular method for introducing Trojans and viruses?In mid-November, members of Sonys PlayStation Underground received the Holiday Demo Disc and discovered that after executing one of the game demos on the disc, their PS2 memory cards were completely erased. While that doesnt mean much to nongamers, for anyone who has spent 40-plus hours building a character in a role-playing game or playing through a season of football—well, its a huge boot in the trousers.

The sampler disc was sent via mail to members of the PlayStation Underground, an opt-in promotional group that Sony calls a "personal link to all the insider info from the PlayStation world."

Ryan Bowling, public relations manager for Sony Computer Entertainment America, said Sony responded to the situation by sending out warning e-mails to PlayStation Underground subscribers telling them to remove their memory cards before playing the demo.

"It is unfortunate that it happened," Bowling said, "and were going to make sure it doesnt happen again."

Resource Library:
But what does this mean for the rest of us?

Theres more to the story than a handful of gamers losing their saved game files. The implications of such a glitch can be huge, especially as consumers start to set up networked computing systems in their homes, complete with routers, networks and servers. Minus cubicles and a water cooler, its the equivalent of a small enterprise network.

Rick Fleming, chief technology officer at Digital Defense Inc., said that although most consumers dont realize it, game consoles are computers that run off their own proprietary operating systems. As a result, a bug in a demo CD, CD-ROM or DVD-ROM could affect the rest of a home network and spread to an enterprise network through a VPN connection or portable storage devices.

"PlayStation and Xbox are being networked with home computers … so I can easily see how something like that would spread across a network," Fleming said. "Every time you connect to something else, theres another opportunity for something to go wrong."

Trouble within the Firewall

The idea that a removable disk can affect an entire networked system seems almost quaint, reserved for corporate spoofs such as "Office Space," in which the protagonists use a program on a 3.5-inch floppy disk to steal money from their company. Nowadays, companies and consumers focus on outside threats, assuming theyre sitting pretty behind Internet firewalls and anti-virus programs.

"Its like theyll leave the windows and sliding glass doors open," Fleming said. "Not the front door, though. Its vaulted shut."

While there are few recent instances of companies sending out software with embedded viruses, it still happens on occasion. In 2002, Microsoft sent out a .Net developer disk infected with the Nimda virus, although Microsoft says it didnt actually spread to any machines.

In the entertainment sector, AOL Time-Warner released a "Powerpuff Girls" DVD in 2001 that contained the peevish "FunLove" virus, which spread to users who played the disc on PC.

In an earlier echo of the PlayStation Underground incident, MacAddict magazine sent out a demo with a version of the Auto-Start virus. In most of these cases, the problems were easily fixed, but is still a signifier that seemingly innocent CDs sent out by reputable companies can contain malicious content.

Next Page: Are Trojans and viruses on the way?





  Reader Comments: The Hidden Risks of Demo Discs
>>> Be the FIRST to comment on this article!
 


 
 
>>> More Network Security & Hardware Articles          >>> More By Libe Goad
 


x}iw㶲DwgV-ȶmtΜHHbL$%'ޗwOo*ܴВNM;i["P B;?;;~$rLH56%3E]"I͝{#(p(IFA)v@{iFuۚ8A&pTwd>J`OS;SM)&Ӱ5Y |+[3}BF6\3b ^Qk$Ё_MMJDERzGEQݓ-Dm:]'w*GUFn3pa_ʞy5ExLԤ#|xB'gxdY (ƻfՉziZgdd vu6L)L|HCɤ:ѰԧFr ˺Y49h4öCCٰo5RrXJyYrwwWӽ l˙[\hoFïsjw a|pd vu]+i0U;ާ;yԼ} Fb}"UJ@DZ-gi" 0i!5tt򰚄:AHsEF n|%Բ_/iv$f1{P$XIcF/XTUGb9괏'򳩥}1h_]^um2h]uڧH>߈ecby1=TrJw#=Z VӓKION{Ws#)|v>5M0\ܱ¬8֪׷V׏`Ck'^3R?&:aZ+}I-IxM!usL ,_edpB~9t !_w nr@ i/]"{,Y`M`ImdƱ(|ǺrN9AcE>oU:_T7ohH2 f4 mp  a6FALu\ Q#|`Mil&XJp?є6`i˫1TE0mESq:]Q4y3Dɭ g/3/r.i"}h8yWTws izT29;G]-7kDm,-ɺs5-wf;]g'჎(>h&ƋCriYnL-rӇtw@>+wOݺzN^TŞ*LКk}0#GA 6]LR}t 9q PhR0|s7Ln-0(5I#=ˋƠ` VGPC!nH }P(V|`{ nȲc@|j JG;r%FaA.O)))?]Pv9DB B!B0 H P  ar Tt@Gҹ;qjr_)hJ9cb -x[b}ILgF2+ɨɬaX91yMf#T`"[ᛥLKak`DݜjI$M#FqqLZۯ(AeE5.SqGr@后3usp#QÂ_xyu|{< Z\քu*C=B3A ~f@Bfg*4+d9pPwg <`t= Xհݹ2RYw$REi5ҋS)4I J>5N+} 8#_gMcY!1QD)OzBaeXSeyew{{RՌgaE8F:b5i%ӻnR?KԝQ48%1`sW|]ӨڞYWo%<4~koH_R.MB[+Ҟ r%W}kaԕ %/EAn6bZ6X>}iȜ^&tTRo?mM!tf:!{j-j&O[_&TYV0>2ai[z#zESڡWr9vn ʸnJY Yr>:u>]Ѓ`w!'!t >+نhp$H80W2`aBS몶B3T&<D2.P\+Uza3ҝŅ|iQ?m/){EKKZq>Omz+U}=cGLmRǖMB!{ӞW+>hAdX(%UMpl"zd\s˰e0|j}]v1+ܸ~ QK!VHr! sMqNWӐPS@ b^,(t=(U5Qް<~lL4Bw.Bā'h<.Y6[P=>޻ĦTQ߀*KRM](Xk±&,< "+iȐ0ց 0 ~"}lA$> \R`t>*e$X6) 5*ixm"`8+Œb:uXQH }j}{e|h3<2 y ә^JZqthUUjVCgG+<(yWEbIxԀA_zPCl?K!f8h2ܮ[K.~g^l^Na"O`%p2HU[}@ 3de`Syt$ d*亢#?݀΍nϟЏ]!.Ծ)X A7+(SӞͥj\Z%JO.xzGk'4A $rֻm?Qd᧜V1 Ppi s}&mnjvJA! p]oJ~QJ<Z^#h z!k!@:[Jp qSaVI dDfaNg¥0ck&&;[9*<+u05.rďtf'XqLzWASB91^% ɹ%wB֮NZo40pR2Y|j0NyT!"kq0n #8wDAۭⲟq#t~7pթTjVgPUWt<,#?3q:FTU;My U̐,+Cj]K>a51t]XI1[MLeM+t׀mkZpwGk&3 {G ɲ\' ׫UVگp.g( ,O$,t9ǣ۷mpH75 SXp| ޠ[PHHHD>QkfR{e"nxR* gF ssb~f{qwoz}Օݷ K -$P) WAhx/nL10:Šq (JQ?v HIcԧtv? ?N;N‷;qa^wԸa@C~:'_HNjmoS,/LdzNR(!1>bt߫]=+co/[''6zv>D 2CH4z7Nus!d};]C|sіҽN z's5B AHFW!zۭlfS k3d8) xdqH/=^q@ښ һ:i_qb녨kNZ _k=WE.7(aF`YF_aY,$"0! Iku:;>   kJ=!Vo8/[Y9D `E/ԩ #aDrIGzZFijqʼnO/`Ea1:*:_Qkᷜo5?Oů1Ok7tAh[(ktNz<\1[iN:|"=Br^'18;}hp1Ie/pǻ"TS (L-ӤNL)fTіxi'y0:ƶ{w8ꀒN9{TlOڢ-]nĖ39\)Lhsyؠ3%dBM[Cp0S`(#9+rq=_uoXG:Q$]:c7:Nj/9"G,&@Q~ ܳ,:];@!_z|oIM2Gz1? nQݘtvh='s = cm:;@FP$w"B+GVɵeNhX:멏UkͰ"K#sCӝ閃CL H|о"σ3 >#Aɼ}g7omT=e>d>IАZ=ty8!-[vfCYf=foݷ?vcW};Ǎ>-l-8tQ#Tiɘ&BARTUjlko$rY9sJE_V ;hd,E#Qd1W.P2QtIK Js`̾qC7跷b8wB'w5GGoqSxw6{eQJW=q-@kjejR-3xL 6;x1t` aAXŀ0h7\#9S1<euw#c³D`HI@Rgig6A j(l8ntpmU0p1-7KqjulD[/'Ɏ?7e{cA|3 e\1kp௩_Lo,)BsѴg=.0SQ@(2.mE.zQv%Fc7YS+x˗,t4?q2L~~+jFY:lZI]&? ruW,w1#Xa;'ք'm>^G~qqwޥTmLX5<)FY'"Ym#Ɛu9:-w֘R}93SAtfۈ:}@sA[\f90vc"Pz>H=zg[qb\P?ۧiMlT F_p%ǫ|ǽ&5}X% OJ.ɼnv$= 8:y4E-Ky}V46)O&|"3D";" ֒?"9q(5Q<@ɀ7evˈxAc'H!l á\IɰTYupaJ)1 h$k, |&8XmѤx ?ʞuOmzn}%6 ZP⋯;jUh齘MrԷjFIa7/fL/ @{h=HJq ~Jl( y![4%1o6FՖ/0]|풪Jjm\h/E',G?$[jHHS6* 神nz S后IA"qDܯz^ &6}sӚۓlJV"+q[OQ㭇BUSUK"]cJ!j5ZWs,nc7 VXXo`+[bl`+$j W@ZQ%<|MɷR۵KT-ݑn\=oT@H")\3oɢھRϕ >>Ҋĩ0Gh GV,;nJ7:G]NT (+AtrwD*6GR˰TP)@':>I& ! i_I"Ht4kdi:x) <ԕN1c4p=*uǩY: q0$ Ht .2|2^"< ͧUߔj/NxP:~<n tO$tM闑{t # @$I=lK,$+--I)d9\;pf5fq$:L nGwwwwkF~Dƽ9reҵHcR]jUuqM E}c6 x}e4yOHs ٌܾWǀJ|x?%?g.)cGuOc¬j}I\4O8|3') qljN`z/e|1P/}U]KEL8:P/s..\. IA! ‰D< xs76s&jWJmuK%Of=9n<}y;z_gUDSyB[Hx 5lgBg(FH*iWE h`CG}QFh}qt6_$_~vN\@9fnKicNr3BD=mѸos@07N`10c?v@s>|VZ D H*V~X[̞3lH/D(@L\`$Ok*_%UOz ب[ . q߼߼߼߼ r~ؖѷ&Pҥ޺6K(Zx,TۖI1X$Et4pkp`D#zuDpqDx OxKf[L{صmofAU@F’G kJȂ,M]W:vzQkJ"|5t󒨉%*}H(fI9 ߨ Phsaڤ(E$ͫ3 ū0y9:P_.oo ʦnXtJ.9-‰@=km=[# ҹl"1+!= $,A77=vifrcJn(J^ĉ%_T.a$nģs 0ė%= ],`$˲tMCƒ؍&/}nZ }ytdGuEWCyН;dB]\^|oI qCZ^`oٍX0+f<W^W둫r.욹AX5]_P^'Dȷ.ŷj 2@koz TZf y&jBSk3AY䈤mCl0I# ۀچձ6ՙxQq|ȪhƑ}:soRηy,徯X6`z{c~C2o@45kQ/NIF(p쵘n8cYXYƳ@FIcR ,H?z\'pM@{jLu-EM~Va [/K{~i O%oIVq0iWeۋɀ{7;0j?A1EKl@.h]Lkz0*;3s/#=ոol`1Ƒ[G?t=eO)So\k_A'-gĬhgϡ01|rʟ[AI%4&ϗ EF?* nO`oufSti f4Su&n[y폩KT#? KSN| yNxNt]M)(Ȣ#TWG`*׶/N|_Eǹ'aWr'0m+4鹫I#샒=%xW ,Q*Dw$a7?:-VFXz-ńU9D NE7wEaww`<ĒI w p#(YL УQc̦"f$xr"*]sNzjʾs~\ : G K]ɖ1xy[/Mz'5!L8VE(*Io$zTGv0J$RMA)Eя|^w>w>)fF<&Lvh;b7=Vں貵qwz2Ko^7G'knVu#[wnVySvXƩK=^U]c4l3˨aZ'$~TRU1sRl"̦zR ?݋#RF̯q}%|#'#lDYIT\Q=@!I<0]LaרbF).o2N[#EVӅkSHʈ"xxbj+GrB9Ϫ͒;IoP}sY?e=a '3u?|۽[!VWvr}C*3;m[6Kg3m˦t2o¨`*MI٫T~LJ/tX0/b#-#^>Infi4F&sُp3'Fΐ!,E|Etz['U}>l1Ghb##ʛB0\'u9'y{0h_*4@^[H{̱2@[@G 㛦{s (]Afk:*|e1uA[:q0qaqn?pБ`%A H3'Th?\]}j՝chTprH1d5"&t87>?_i}bnOKZa kE$06׷W4J 1bNx 19ӈ)i=r6^fCcн8||u.#@[?b 6C;b<1cRf҃SkSAtQ:..( o$H)YPXP؟S?pk2TJLmn$>9oxpFé :la`t.8u?ϼðq7]@fVpRt=:rtԨ)ʞ*|{#@u S2S¤vt\/?>').yDci 8^iN4_Z#!oX62 =6#`;7C grڻ"-rznǣUr]yO0a[+M|폺Uwz'{O;˫1 kyl25^ Q9huNSʙ~ri.$ "cɃwg;8/ӝ'a~?)Qe3̋ qW~4ANNֆS|~ƫ#x]ja03G MP?h Jc7 5>Mo )n}>EЌLjV}QuxS? _APj+彜rI;ʏח~Ns>?BgB󬳾sRhvNrʡsSC) חݜ9n|o7]O7?]7g]n}v>9.s޿y *~0~0~@忬/1>Arߧ}}5_^55uu$!(oYNoR8G9B(^*Uy׀a uqS9@yJˡ*,c/s\-*sҿw2~62A\N aqʍz^S_xڞ閽pLڭe]9nPKG{1*,xW&  )htVydSrbye?VRRw;]Cڤ\j. {]W[O'ikz(s<2g!h{dZ+mDgcƝ@D1KA1_w9ݧ,_;H_ẽhĿ-NÙgٞރ}nC7fn@qLb pOkz>sxvY^]Y\;Yo%P.Y#IsDgev0ACѺ`*+6:7\q3[ #Èà8o@/kOg >췏?^uoҾh/[35J쓭? }F`ͼTVN)pB;,RKtCc,{'O!4EL=#>jpO_i{A|3q X94l HGRiejRߑN0mFGDd10i5ɪ"+uw9 8]V*r `"! *s>P`24UF` Ԋz!J1 4`֭tK_c(wp E Ч ~v̆t˘/͛YȌ)æʗᄽNگ$` }pLB Psgq =u] XI}Q<ZA0b{I2hؐM ؒ9N-#G1N>@_x/gj?`#X)43Ǭ:==C儠toWrmX<apb2~]h0q>p?gF`Ƹҥf\ci_/0601Jx>}r)1)$Ơ֝T#ZcXn΄`ðPn=,6"4Σ>0̦I ůD|݆mwn&!g)-Dc[820tճVmbxnvԙ%1H_+00ƚ1LRO"cg,ψy&&l }_I>=K}v`"MO~gIBd4xHIأ ^BOvBv`7O 챧0,J6 qS$)<#!1苄I Mc = L:B2,%؉GGuhJ UbArvboE52FXk[^璑̀ԛZd%\7&>%ͶscT =YOt$E,Ma{-fY{6Dπj gyyU (p6d+Ժ lQF޺%qm.;+C]@1֪TU|>cx nj}7C2~ d|$_Oxƪ~SQxr=Gз57b8[| xˍtf_$%\"dFxlg`SwDl .7(*O]F xWa!*e;6K)(Xp^'Al=i3w>E-\LHxkyf#%3+~`[t%(5x2[vGLWe؋(| _b[0~X+mKbA<\n2?>%i3 }@ }( of4~`y%K@4 qS`hp#1tVBR(ctA U1?cm'nFQXƺi#]Qa[:6 n ۲ uy˷TM\7-'mycQ1W)?Il}X<޳sW=?5zl3ǿi<9Y}#s!?²LjH2mf^^kti( aavX9-z0 \M萻kÔpaif#3S{3 ;߂ ixv4d31#7Dj0BrH d[H_مt&v3k/YH~1  <99.@$NSP_X1]< :L+ .ƕEyXqө8Yo>.)ZByڻHn$oꎾV;~v?;Lw~mG a ѸT\Ɠ_;+{罫,lݸGz/N@ђuzW',!ջlt.ާ+e=;`ons gs7*Ѡ,jU z' l5mEgl(3W'J^R۝wz"f/F)SذM*i29J{) qŕ˕bmTɩIrlǝlr n!%c]&ŮMvbesa5Gt+