A scandal erupted in 2005 regarding
Sony BMG's implementation of deceptive, illegal, and potentially harmful
copy protection measures on about 22 million
CDs. When inserted into a computer, the CDs installed one of two pieces of software which provided a form of
digital rights management (DRM) by modifying the operating system to interfere with CD copying. Neither program could easily be uninstalled, and they created vulnerabilities that were exploited by unrelated
malware. Sony claims this was unintentional. One of the programs installed even if the user refused its
EULA, and it "
phoned home" with reports on the user's private listening habits; the other was not mentioned in the EULA at all, contained code from several pieces of
open-source software in an apparent infringement of copyright, and configured the operating system to hide the software's existence, leading to both programs being classified as
rootkits.