Beastie Boys New Cd
<div class="IPBDescription">Installs a virus??!?!</div> <a href='http://www.theregister.co.uk/2004/06/23/beastie_boy_cd_virus/?index' target='_blank'>http://www.theregister.co.uk/2004/06/23/be...cd_virus/?index</a>
<!--QuoteBegin--></div><table border='0' align='center' width='95%' cellpadding='3' cellspacing='1'><tr><td><b>QUOTE</b> </td></tr><tr><td id='QUOTE'><!--QuoteEBegin-->Beastie Boys CD installs virus
By Thomas C Greene
Published Wednesday 23rd June 2004 11:18 GMT
A new Beastie Boys' CD called "To the Five Boroughs" (Capitol Records), is raising hackles around the Web for reputedly infecting computers with a virus.
According to a recent thread at BugTraq, an executable file is automatically and silently installed on the user's machine when the CD is loaded. The file is said to be a driver that prevents users from ripping the CD (and perhaps others), and attacks both Windows boxen and Macs.
The infected CD is being distributed worldwide except in the USA and UK, which prevents us from giving a firsthand report. However, according to hearsay, we gather that the Windows version exploits the 'autorun' option, and that the Mac version affects the auto play option.
On Windows, when a CD is loaded, a text file called autorun.inf is read, and any instructions within it are executed. In this case, the machine is instructed to install some manner of DRM driver that prevents copying. We haven't seen either the .inf file or any of the executables, so we can't say how or at what level it accomplishes this - or if indeed it actually does accomplish this.
But assuming that the unconfirmed reports are accurate, we have here a media company infecting users' machines silently with a file that affects a computer's functionality, without first obtaining informed consent: a likely violation of pretty much every jurisdiction's anti-hacking laws. It's possible to foresee criminal charges being brought at some point: after all, having a good reason for spreading malware has never been much of a defence in court. And a file that alters a computer's functioning without the owner's informed consent is the very definition of malware. Because this malware can be transferred from machine to machine on a removable disk, and requires user interaction to spread, it is, quite simply, a computer virus. (A worm, on the other hand, is distinguished by its ability to spread without user interaction.)
CD virus protection
Let's look at the ways this autorun business can be defeated. It's quite easy to disable autorun in Windows by holding down the Shift key when loading a CD. Unfortunately, this has to be done each time the CD is played. However, it's easy to insert the CD once with the Shift key depressed, and then simply rip the tracks to the hard disk. You can then use the CD in other devices, and listen to your corresponding MP3s or whatever on your computer.
You can also disable the autorun "feature" on your Windows machine permanently so that this and other CDs infected with viruses won't affect you in the future.
To do this, go to the Start menu ==> Run, and type in the command regedit. Your registry editor will launch. Navigate to the following key, and edit as shown:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CDRom and set Autorun DWORD=0
It might be necessary to create the value, thus: Data Type: DWORD Value Name: Autorun Value: 0
As usual, you must reboot your Windows box for the changes to take effect.
Disinfection
The above procedure assumes that you haven't previously installed the suspected Capitol Records virus, or a similar one from another fine entertainment conglomerate. But if you have, you will need to find and uninstall the malware first. The autorun.inf file on the CD will likely indicate the name of the relevant file(s), the locations where they're installed, and any registry changes made.
Armed with that information, go to the Windows 'uninstall' utility:
Start menu ==> Settings ==> Control Panel ==> Add or Remove Programs ==> Change/Remove.
Look for any program files referenced in the autorun.inf file and uninstall them. If no related programs are listed, you will need to launch the Windows Search Companion and search for any files named in the autorun.inf file and delete them manually. Be sure to activate the options in the "more advanced features" dialog allowing you to search the entire disk (search system folders, search hidden folders, and search subfolders).
Now, a word of caution: if the Capitol Records virus has updated a library file or driver, deleting it might affect your system's functioning, and you might need to re-install Windows to put things right again. (Carefully log the time needed to do this and include it in your criminal complaint.) However, deleting a foreign executable file is safe, so long as it's not one you actually need. So be careful about file name spellings so that you don't accidentally delete an important file that's spelt similar to the one you wish to be rid of. ®<!--QuoteEnd--></td></tr></table><div class='postcolor'><!--QuoteEEnd-->
A big WTH goes out to the Beastie Boys and Capitol Records.
<!--QuoteBegin--></div><table border='0' align='center' width='95%' cellpadding='3' cellspacing='1'><tr><td><b>QUOTE</b> </td></tr><tr><td id='QUOTE'><!--QuoteEBegin-->Beastie Boys CD installs virus
By Thomas C Greene
Published Wednesday 23rd June 2004 11:18 GMT
A new Beastie Boys' CD called "To the Five Boroughs" (Capitol Records), is raising hackles around the Web for reputedly infecting computers with a virus.
According to a recent thread at BugTraq, an executable file is automatically and silently installed on the user's machine when the CD is loaded. The file is said to be a driver that prevents users from ripping the CD (and perhaps others), and attacks both Windows boxen and Macs.
The infected CD is being distributed worldwide except in the USA and UK, which prevents us from giving a firsthand report. However, according to hearsay, we gather that the Windows version exploits the 'autorun' option, and that the Mac version affects the auto play option.
On Windows, when a CD is loaded, a text file called autorun.inf is read, and any instructions within it are executed. In this case, the machine is instructed to install some manner of DRM driver that prevents copying. We haven't seen either the .inf file or any of the executables, so we can't say how or at what level it accomplishes this - or if indeed it actually does accomplish this.
But assuming that the unconfirmed reports are accurate, we have here a media company infecting users' machines silently with a file that affects a computer's functionality, without first obtaining informed consent: a likely violation of pretty much every jurisdiction's anti-hacking laws. It's possible to foresee criminal charges being brought at some point: after all, having a good reason for spreading malware has never been much of a defence in court. And a file that alters a computer's functioning without the owner's informed consent is the very definition of malware. Because this malware can be transferred from machine to machine on a removable disk, and requires user interaction to spread, it is, quite simply, a computer virus. (A worm, on the other hand, is distinguished by its ability to spread without user interaction.)
CD virus protection
Let's look at the ways this autorun business can be defeated. It's quite easy to disable autorun in Windows by holding down the Shift key when loading a CD. Unfortunately, this has to be done each time the CD is played. However, it's easy to insert the CD once with the Shift key depressed, and then simply rip the tracks to the hard disk. You can then use the CD in other devices, and listen to your corresponding MP3s or whatever on your computer.
You can also disable the autorun "feature" on your Windows machine permanently so that this and other CDs infected with viruses won't affect you in the future.
To do this, go to the Start menu ==> Run, and type in the command regedit. Your registry editor will launch. Navigate to the following key, and edit as shown:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CDRom and set Autorun DWORD=0
It might be necessary to create the value, thus: Data Type: DWORD Value Name: Autorun Value: 0
As usual, you must reboot your Windows box for the changes to take effect.
Disinfection
The above procedure assumes that you haven't previously installed the suspected Capitol Records virus, or a similar one from another fine entertainment conglomerate. But if you have, you will need to find and uninstall the malware first. The autorun.inf file on the CD will likely indicate the name of the relevant file(s), the locations where they're installed, and any registry changes made.
Armed with that information, go to the Windows 'uninstall' utility:
Start menu ==> Settings ==> Control Panel ==> Add or Remove Programs ==> Change/Remove.
Look for any program files referenced in the autorun.inf file and uninstall them. If no related programs are listed, you will need to launch the Windows Search Companion and search for any files named in the autorun.inf file and delete them manually. Be sure to activate the options in the "more advanced features" dialog allowing you to search the entire disk (search system folders, search hidden folders, and search subfolders).
Now, a word of caution: if the Capitol Records virus has updated a library file or driver, deleting it might affect your system's functioning, and you might need to re-install Windows to put things right again. (Carefully log the time needed to do this and include it in your criminal complaint.) However, deleting a foreign executable file is safe, so long as it's not one you actually need. So be careful about file name spellings so that you don't accidentally delete an important file that's spelt similar to the one you wish to be rid of. ®<!--QuoteEnd--></td></tr></table><div class='postcolor'><!--QuoteEEnd-->
A big WTH goes out to the Beastie Boys and Capitol Records.
Comments
Seriously, what the hell!?
until then Ill give my unoffical "haha"
Good one <!--emo&;)--><img src='http://www.unknownworlds.com/forums/html//emoticons/wink.gif' border='0' style='vertical-align:middle' alt='wink.gif' /><!--endemo--> They probably use some monkeys instead..
It's not like uber-evil, but kinda dodgy and generally not cool.
They did broke the law, that's why, bomm yah baby!
They did broke the law, that's why, bomm yah baby! <!--QuoteEnd--> </td></tr></table><div class='postcolor'> <!--QuoteEEnd-->
What are you talking about? its perfectly leagle to install virii on people computers without them knowing about it. </sarcasm>
It's not like they warn you, "putting this CD into your computer and allowing it to autorun will install virii to your computer"
Unless you just happened to see a thread like this somewhere you wouldn't know any better anyways.
Fair enough a PC which autoruns is could be said as being daft, but its convinient. I dont grumble about them making music safer fair enough, but those people with minidisc players, and mp3 players which cannot rip the tracks. They are in effect promoting more piracy, because when people find out what the **** is going on, people will just download them off kazaa to save the hassle. Personally if Capitol are found to be doing this then i hope they go bankrupt and have to close. <!--emo&:angry:--><img src='http://www.unknownworlds.com/forums/html//emoticons/mad.gif' border='0' style='vertical-align:middle' alt='mad.gif' /><!--endemo-->
I dont think its AOLers by the way who this would happen to, because without warning any poor old person could put in the cd, think its harmless and poof, they are shagged.
<!--QuoteBegin--></div><table border='0' align='center' width='95%' cellpadding='3' cellspacing='1'><tr><td><b>QUOTE</b> </td></tr><tr><td id='QUOTE'><!--QuoteEBegin-->because without warning any poor old person could put in the cd, think its harmless and poof, they are shagged.<!--QuoteEnd--></td></tr></table><div class='postcolor'><!--QuoteEEnd-->
I agree but if I did it, it would be my own fault.
Also I do hope they stop doing this, tis not nice :/ <!--QuoteEnd--> </td></tr></table><div class='postcolor'> <!--QuoteEEnd-->
Why shouldn't they have to warn you? Exploiting said security holes is illegal, so you know. You are required by law to warn people what they're getting into before you maliciously attack their computer.
funny thing about itunes, it's illegal to strip the file protection stuff. so just burn it to a cd (legal) and then rip it (again, legal) kaboom, mp3s from itunes
funny thing about itunes, it's illegal to strip the file protection stuff. so just burn it to a cd (legal) and then rip it (again, legal) kaboom, mp3s from itunes <!--QuoteEnd--> </td></tr></table><div class='postcolor'> <!--QuoteEEnd-->
Wouldn't the cumulation of those actions be considered striping the file protection and therefore be illegal?
The music will be ripped and distributed anyway, there seems to be no way around this except something like palladium as it used to be called. But legal owners are prohibited from ripping their CDs(legal and common) and some types of DRM prevents CDs from working correctly in certain CD players.
<!--QuoteBegin--></div><table border='0' align='center' width='95%' cellpadding='3' cellspacing='1'><tr><td><b>QUOTE</b> </td></tr><tr><td id='QUOTE'><!--QuoteEBegin-->I think it's worth noting that it does not install a virus that causes malicious damage to your computer, it's just a copyright protection system that prevents ripping. It can technically be called a virus, but it's not one that will destroy your system or data. Bit of an overreaction to call it that IMO.<!--QuoteEnd--></td></tr></table><div class='postcolor'><!--QuoteEEnd-->
If it prevents you from ripping any CD it is both illegal and malicious as you are legally allowed to convert media for personal use.
For some insane weird reason my PC stoped autoplaying stuff by itself, then a few months later the autorun button in the RMB menu on the DVD drive went to!
I now have to manualy activate everything on the CD. Seems my weird twist of fate was a good thing after all.
Regardless, it is not a virus in the traditional sense of the word. It does not destroy data, cause network traffic, attempt to replicate itself onto other machines, or any other behaviors that are associated with viruses. It does interfere with some operations, I'll grant, but I don't think it deserves to be called a virus. Spyware, yes.
funny thing about itunes, it's illegal to strip the file protection stuff. so just burn it to a cd (legal) and then rip it (again, legal) kaboom, mp3s from itunes <!--QuoteEnd--> </td></tr></table><div class='postcolor'> <!--QuoteEEnd-->
samefor napster. Download the tracks for free to play, it normally costs to burn to anything but heh. play and hook in speaker output to minidisc player, set it to auto track place(As far as i know that not illegal). Once done hook minidisc player to computer via USB and then pull the tracks back onto computer (Also not illegal). No different to copying straight from radio.
I was just going to post that.
But anyways
Exactly, why buy a cd that has a virus on it when you can just download the freaking songs?