WEEKLY REPORTS Security updates Top 10 Threats

Last year, in an attempt to thwart illegal duplication, Sony BMG began protecting some music CDs by including extended copyright protection (XCP) software that downloads when the CD runs on a computer.

Once the software downloads onto your system it prevents you from making more than two copies of the CD. Upon closer inspection of the program, experts have discovered that it buries itself deep into your Windows system and uses a cloaking tool, making it invisible to both the user and anti-virus programs. Detected on over half a million networks in 165 countries, this Sony backdoor has already been taken advantage of by computer threats -- like the Stinx.E Trojan -- hiding themselves in Sony's cloaking program.

Uninstalling the XCP software yourself could lead to the deletion of important software connected to your CD-ROM and could cause your system to crash. Some anti-virus companies also warn against using the patch released by Sony since it may leave an even bigger security hole on your system. Plus, the CD that you paid for still won't be playable on your PC.

Sony has released a complete list of CDs that include the XCP software. Since Sony plans to re-release these titles without the software, be sure to compare the item number listed with the item number that appears on the spine of your CD.

Information, Protection and Prevention -- More about XCP, Sony, and the threats that exploit them
• Sophos' Stinx.E information

• US-Cert's suggestions for handling XCP

• Panda Software's XCP definition

• Doxpara's XCP research

• Sony's FAQ about XCP

Go back

* Reading: Solutions, Prevention & Remedies
Additional summary information related to a specific type of solution or prevention that you should be considering. Depending upon the week, this section may have:
• Recent Windows security releases from Microsoft
• Recent updates to widely used anti-spyware programs
• Recent updates to widely used anti-virus programs
• Recent updates to other security programs & devices (ex: Firewalls, routers)
• Recent updates to various applications in wide use

Go back

Read: Top Threats
These are viruses that are currently on the watch lists of major anti-virus software companies.

Name
What the threat is called. We use the name given each virus by Panda Software. Sometimes other anti-virus companies give the same threat a different name. Usually they use similar names.

Type
There are different characteristics associated with different types of threats.
• Virus - has the ability to replicate or infect computers or other programs
• Trojan Horse (or Trojan) - appear to be harmless programs when you get them. They unleash their payload when you double-click, open, or execute them.
• Phishing - a Web site or e-maill message posing as another company - usually one you know to fool you into giving the sender personal information.
• Worm - self replicates onto additional disks, computers or networks
• Spyware - installs on your system to collect information about your activity, preferences or interests
• Hoax - false messages sent by e-maill to mislead the recipient
• Backdoors - opens a security hole that allows outsiders to take control of your computer
• Dialer - uses your telephone to dial an outside number - sometimes a number that costs you money when dialed

Affects
Not all viruses affect all types of systems. Some, for example may affect only Windows 98 and 95, but not Windows XP or NT. Others affect all Windows systems, but not Macintosh. In this column, we show you the consumer systems that the threat is known to affect. We don't always include the servers that operate in your company's backroom.

Alert level
The level of awareness that anti-virus vendors suggest you need to have for each threat listed.
For each threat listed, we'll post a corresponding link here, so you can get more information to help you recognize, diagnose, prevent, and repair the problem.