Microsoft is cleaning up Sony’s DRM mess amid fears that the rootkit could be used for malware purposes. The rootkit, a component of the controversial DRM scheme used by Sony BMG Music Entertainment, was discovered in October by Windows analyst Mark Russinovich who published his findings in his blog at SysInternals.com. Microsoft has taken the move of updating its Windows AntiSpyware application to add a detection and removal signature for the rootkit features used in the XCP digital rights management technology.
According to Jason Garms, group product manager in Microsoft’s Anti-Malware Technology Team, the rootkit removal signature will be pushed out at Windows users through the anti-spyware application’s weekly signature update process.
Detection and removal of the XCP rootkit will also appear in Windows Defender, the next version of Windows AntiSpyware when that makeover ships.
Microsoft plans to include this signature in the December monthly update to the Malicious Software Removal Tool.
Good for Microsoft for doing this. This rootkit stuff is nothing short of criminal, though since we have the best government money can buy in the States, I seriously doubt we’ll see any charges come of this.