« Flamintiki's First Podcast! | Main | How to write Firefox extensions »
December 31, 2004
Is the RIAA hiding spyware in windows media files?
Here's a story that raises many more questions than it answers. When the recording industry first tried to get politicians to shut down file sharing networks, they went with the "it's stealing music" line, which generated some interest, but most people didn't seem to pay attention. Then, the industry suddenly became oh-so-concerned about the fact that child porn was on these systems, and tried to convince politicians they needed to stop file sharing for the "sake of the children." Lately, it seems the industry will do whatever it takes to make file sharing systems look bad. With that in mind, it makes you wonder if they'd go so far as to specifically hide spyware on file sharing networks just to upset users. It's not entirely clear if that's what happened, but it seems like the most obvious explanation for the following story, which was found on Broadband Reports. Overpeer, a subsidiary of Loudeye, has been caught hiding adware and spyware within Windows Media files. Overpeer is the same company that the recording industry has hired in the past to dump fake versions of songs on file sharing networks. What the article doesn't answer is whether or not the industry hired Overpeer to dump spyware on the network as well, but it's likely they're pleased either way. Overpeer defends their actions by saying that everyone deserves what they get because, obviously, they were looking for unauthorized files. It's not clear that everyone would agree. Sneaking malicious files onto someone's computer because "they deserved it!" doesn't seem like a very good justification. What may be even more important to this story, however, is the revelation of just how easy it is, thanks to a huge loophole in Microsoft's copy protection technology, to include a malicious file with an audio or video file. Basically, because Windows DRM needs to look for a license, all anyone needs to do is point that license to a website that loads malicious content and off you go. Thank you Microsoft, for creating a huge loophole that will probably make sure millions of new computers are loaded with spamming, DDOSing trojans shortly. Thank goodness for that Microsoft DRM, huh? Not only does it not protect any actual property while making things more expensive, it opens up plenty more people to malicious attacks.
[via techdirt]
Posted by Jon at December 31, 2004 12:52 AM