Check out my column for this month at eSecurity Planet. Here’s a sample:

It’s important to remember that plenty of good companies make mistakes. But in my book, what sets a good company apart from a bad one is how they react when their mistakes are discovered.

When interviewed on the radio, the president of Sony BMG’s Global Digital Business, Thomas Hesse, said, “Most people, I think, don’t even know what a rootkit is, so why should they care about it?”

Note to Mr. Hesse: “Who cares?” is seldom a good response.

I’m betting that Mr. Hesse didn’t know what a rootkit was before this issue arose, and from the tone of his comments, you can be sure he still doesn’t understand the consequences of it. Unfortunately for him, the gross tonnage of what he doesn’t understand about how his company screwed up only now is coming to light.