Analysis: The Big Lesson From Sony's Rootkit Experience

digital abstract of a globe overlaid on a data board

The Final Phase of Digital Transformation Focuses on Data The Final Phase of Digital Transformation Focuses on Data

byNetwork Computing

Apr 26, 2024

1 Min Read

hiker climbing to top of a mountain

A New Era for CISOs: Navigating Regulations and Unprecedented Threats A New Era for CISOs: Navigating Regulations and Unprecedented Threats

byDeneen DeFiore, Jason Lee

Apr 25, 2024

5 Min Read

Resilience

Recent in Resilience

FBI Director Christopher Wray testifies during a Senate Intelligence Committee Hearing on worldwide threats on Capitol Hill in Washington, DC

Cyber Resilience

The Continuing Vulnerability of US Critical Infrastructure The Continuing Vulnerability of US Critical Infrastructure

byCarrie Pallardy

Apr 25, 2024

6 Min Read

Special Cybersecurity Forces Soldier Arrests and Handcuffs Highly Dangerous Hacker. Hideout is Dark and Full of Computer Equipment.

Cyber Resilience

To Catch a Cybercriminal -- and the Fallout That Follows To Catch a Cybercriminal -- and the Fallout That Follows

byCarrie Pallardy

Apr 25, 2024

13 Min Read

ML & AI

Recent in ML & AI

Revolutionizing Healthcare: The Impact of AI in Personalized Medicine and Beyond Revolutionizing Healthcare: The Impact of AI in Personalized Medicine and Beyond

Healthcare

Machine Learning & AI

byFPT Expert

Apr 29, 2024

5 Min Read

OpenAI logo depicted on sign

Machine Learning & AI

OpenAI Enterprise API Expands Offerings, Eyes Growth and Safety OpenAI Enterprise API Expands Offerings, Eyes Growth and Safety

byShane Snider

Apr 26, 2024

6 Min Read

Data

Recent in Data

digital abstract of a globe overlaid on a data board

The Final Phase of Digital Transformation Focuses on Data The Final Phase of Digital Transformation Focuses on Data

byNetwork Computing

Apr 26, 2024

1 Min Read

Businesswoman standing in data center.

GPUs Force CIOs to Rethink the Datacenter GPUs Force CIOs to Rethink the Datacenter

bySamuel Greengard

Apr 23, 2024

6 Min Read

Sustainability

Recent in Sustainability

Sophia Mendelsohn, chief sustainability officer with SAP.

Sustainability

SAP’s Sophia Mendelsohn on Using AI to Scale Sustainability SAP’s Sophia Mendelsohn on Using AI to Scale Sustainability

byJoao-Pierre S. Ruth

Apr 9, 2024

5 Min Read

Robot hand with green plug, plug socket

Sustainability

Confronting the AI Energy Drain Confronting the AI Energy Drain

byRichard Pallardy

Apr 1, 2024

14 Min Read

Infrastructure

Recent in Infrastructure

Businesswoman standing in data center.

GPUs Force CIOs to Rethink the Datacenter GPUs Force CIOs to Rethink the Datacenter

bySamuel Greengard

Apr 23, 2024

6 Min Read

Homepage of Broadcom website on the display of PC

Cloud Group Pans Broadcom’s Effort to Placate EU Regulators Cloud Group Pans Broadcom’s Effort to Placate EU Regulators

byShane Snider

Apr 22, 2024

2 Min Read

Software

Recent in Software

Manager is checking off four workers in a virtual planning matrix to select them for a work team.

Why Your Enterprise Should Create an Internal Talent Marketplace Why Your Enterprise Should Create an Internal Talent Marketplace

byJohn Edwards

Apr 24, 2024

5 Min Read

Young concentrated computer developer writing new code

Software & Services

How Developers of All Skill Levels Can Best Leverage AI How Developers of All Skill Levels Can Best Leverage AI

byPeter McKee

Apr 24, 2024

7 Min Read

Newsletters
Reports/Research
Online Events
Live Events
Podcasts

White Papers
Advertise With Us
About Us
IT Sectors

InformationWeek Resource Library

IT Leadership

Analysis: The Big Lesson From Sony's Rootkit Experience

Sony may have done us all a huge favor with its rootkit episode in reminding us how dangerous certain kinds of exploits can be to users.

Rob Enderle, Contributor

November 15, 2005

1 Min Read

Getting Rid of the Rootkit

Generally you need to rebuild the system from scratch. Rootkits embed themselves so effectively in the OS that being sure you got rid of it is almost impossible and there is a good chance that the effort, even if successful, would destabilize the operating system.

This remains the best practice and even though Sony is providing an incredibly convoluted process to remove their rootkit, my recommendation is to do a clean OS installation on the infected systems to avoid what will probably be a very unhappy user that would otherwise result.

Last Words

Rootkits are nasty business because they are virtually impossible to detect, they open up even the most secure platforms to attack, and their removal costs as much as an OS upgrade in time and labor.

Making sure people are trained to look for them, that email filters are blocking all executable files, and users are reminded of the risks of installing untrusted applications on a regular basis are all good practices to fight rootkits.

In any case, anyone responsible for IT security that isn’t coming up to speed on rootkits is likely to get a really rude awakening. A good overview can be found on Wikipedia.

Good luck, and, in the meantime, you may want to follow Dan Gillmor’s advice and not buy anything from Sony this holiday season as a special thank you for putting all of your employees at risk.

About the Author(s)

Rob Enderle

Contributor

See more from Rob Enderle

Never Miss a Beat: Get a snapshot of the issues affecting the IT industry straight to your inbox.

SIGN-UP

Editor's Choice

NHL's Calgary Flames at New Jersey Devils on February 8, 2024 in Newark, NJ

NHL, Presidio, and a Transformation Power Move with Hybrid Cloud NHL, Presidio, and a Transformation Power Move with Hybrid Cloud

byJoao-Pierre S. Ruth

Apr 5, 2024

6 Min Read

Online Privacy Security Threat Abstract Background Art

Cyber Resilience

Cyber Risks When Job Hunters Become the Hunted Cyber Risks When Job Hunters Become the Hunted

byCarrie Pallardy

Apr 9, 2024

9 Min Read

Business innovative solution and creative concept as a paper boat tied to a light bulb