 |
The following information is true and accurate at the time of publication.
January 24, 2002
Announcement Concerning VAIO Computer Security
Tokyo, January 24, 2002- Sony Corporation today announced they
have discovered a security issue in VAIO software [VAIO Manual CyberSupport
for VAIO] Version 3.0 and Version 3.1 that is pre-installed in some models
of VAIO computer and the Recovery CD.
Starting today, Sony will post this information on their company homepage
to notify VAIO customers and ask customers to immediately download a [VAIO
Security Enhancement Program] from the homepage to prevent computer security
violations.
At this time, Sony has received no complaints from VAIO customers of damage
to data due to this security issue.
- Outline of the Situation
- As a result of this situation, there is a danger that a third party
may find a way to by pass the software's security and access the VAIO
through a homepage on the Internet or by email without authorization.
One of the following may be used to achieve this.
- An Internet homepage
- An Email containing HTML computer code
- An HTML file attached to an Email
If the VAIO is attacked in this way, it may result in stored data being
over written, erased or copied. In this instance, running regular anti-virus
software will not protect the affected models of VAIO.
- Affected Models (please see the attached
list)
-
| Japan: |
All VAIO sold
since May 2001 with pre-installed [VAIO Manual CyberSupport
for VAIO] Ver. 3.0 or Ver. 3.1.
*VAIO on sale from January 26th are not affected by this security
issue. |
| Overseas: |
All VAIO sold
since November 2001 in the countries and areas listed below.
- East Asia (excluding mainland China)
- Southeast Asia
- Oceania
- United Arab Emirates, Saudi Arabia, South Africa |
- The affected software pre-installed in VAIO
sold overseas is called [VAIO Manual].
- VAIO sold in North America, Central & South America, Europe and
mainland China are not affected by this security issue
- VAIO models now on sale have been treated for this security issue.
Customer Notification
- Solution
- The security issue can be corrected by downloading the [VAIO Security
Enhancement Program]. Customers should download the program from the
Sony homepage, and up-date the pre-installed VAIO software in their
computer (For Japanese http://www.vaio.sony.co.jp/Security/, For
English http://vcl.vaio.sony.co.jp/Security/english/index.html).
- In the event that the download is not successful
and customers need to request the download on a pre-recorded CD-ROM,
they should contact the [VAIO Customer Link Security Information Desk]
(free dial) for advice. In order to install the program as quickly
as possible, Sony recommends customers download the program from the
homepage.
In the future Sony intends to strengthen product security by working to
integrate the process of software design with the system of checking software
security.
As there is a universal problem of hackers trying to discover weaknesses
in computer security and creating virus that can invade personal computers
through the Internet, Sony recommends VAIO customers continue to take
precautions against virus and security violations after installing the
[VAIO Security Enhancement Program].
- Do not open HTML format Email and/or attached files sent by an
unknown person
- Do not recklessly access homepages of a questionable origin and
nature
- Exercise caution when opening an attached file sent by a third person
- Perform a virus scan frequently using anti-virus software
- Check the latest VAIO security information on the [Support] site
at http://vcl.vaio.sony.co.jp(*Japanese
only)
- Check the latest information about OS and browser security on the
Microsoft Co. Ltd. homepage.
Sony Customer Inquiries
URL: http://www.vaio.sony.co.jp/Info/security.html(*Japanese
only)
For download information in English: http://vcl.vaio.sony.co.jp/Security/english/index.html
For telephone inquiries - [VAIO Customer Link Security Information Desk]
*For VAIO purchased in Japan only
Telephone (free dial): 0120-70-8103
Opening Hours: 10:00 to 17:00 (Including Sat., Sun. and National Holidays)
Please check the warrantee certificate or packaging for the correct model
name
[List of Affected Japanese Models]
Desk Top:
| [VAIO
RX] |
PCV-RX73, PCV-RX73V9, PCV-RX73L6,
PCV-RX72K, PCV-RX72KV9, PCV-RX72KL5 |
| PCV-RX63, PCV-RX63V7, PCV-RX63L5,
PCV-RX62K, PCV-RX62KV7, PCV-RX62KL5 |
| PCV-RX53, PCV-RX53V7, PCV-RX53L5,
PCV-RX52, PCV-RX52V7, PCV-RX52L5 |
| [VAIO J] |
PCV-J21MG, PCV-J21MGL5, PCV-J21M, PCV-J21ML5, PCV-J21MBP, PCV-J21MBPV7, PCV-J21, PCV-J21V5,
PCV-J20GBP, PVC-J20GV7BP, PCV-J20, PCV-J20V5, PCV-J20BP, PCV-J20V7BP, PCV-J20A, PCV-J20AL5
|
| [VAIO MX] |
PCV-MXS1, PCV-MXS1L5 |
| [VAIO LX] |
PCV-LX93G, PCV-LX93G/BP, PCV-LX83, PCV-LX83/BP,
PCV-LX53G, PCV-LX53G/BP, PCV-LX53, PCV-LX53/BP, PCV-LX33, PCV-LX33/BP, PCV-LX92G/BP, PCV-LX82/BP, PCV-LX52G/BP, PCV-LX52/BP, PCV-LX32/BP |
Notebook:
| [VAIO NOTE GR] |
PCG-GR90E, PCG-GR90E/K, PCG-GR9E, PCG-GR7E,
PCG-GR5E/BP, PCG-GR9, PCG-GR9/K, PCG-GR7/K |
| [VAIO NOTE FX] |
PCG-FX77S/BP, PCG-FX55S/BP, PCG-FX33S/BP, PCG-FX11S/BP,
PCG-FX90G/K, PCG-FX77G/BP, PCG-FX60G/K, PCG-FX55G/BP, PCG-FX50G/K, PCG-FX33G/BP, PCG-FX11G/BP
|
| [VAIO NOTE QR] |
PCG-QR3/BP, PCG-QR1S/BP
|
| [VAIO
NOTE 505] |
PCG-R505F/BD, PCG-R505F/SP, PCG-R505FR/D, PCG-R505FR |
| [VAIO NOTE SR] |
PCG-SRX7, PCG-SRX3/BD, PCG-SRX3,
PCG-SR9M/G, PCG-SR9M/K, PCG-SR1M/BP, PCG-SR1M |
| [VAIO C1] |
PCG-C1MRX, PCG-C1MR/BP,
PCG-C1VSX/K, PCG-C1VS/BW |
Affected VAIO Models - Overseas
Please check the warrantee certificate or packaging for the correct model
name
[List of Affected Overseas Models]
Desktop:
No affected models
Notebook:
| [VAIO NOTE FX] |
PCG-FX990, PCG-FX900, PCG-FX900H, PCG-FX990L |
| [VAIO NOTE 505] |
PCG-R505AFT, PCG-R505AGT, PCG-R505AFH, PCG-R505AFL, PCG-R505AGL |
|
|
|
|
