Quantcast
PS3 experiences biggest hack yet.

Forums - Sony Discussion - PS3 experiences biggest hack yet.

 

 

 

Sony's PlayStation 3 experiences its biggest hack yet

 

A hacker group finds a secret set of codes that can decrypt the PlayStation 3's Level 0 security layer -- the holy grail of secrecy within Sony's console.

October 24, 2012 7:48 PM PDT

 

Sony may have trouble defending itself from this hack.

(Credit: CNET )

Hackers have found a way to break down one of the toughest defensive walls in Sony's PlayStation 3 software security, ensuring that those who use custom firmware can run homebrew software and pirated games forever.

A group calling itself "The Three Musketeers" on Monday released a secret set of LV0 codes that can decrypt the PlayStation 3's Level 0 (LV0) security layer used by the primary boot loader. This means that hackers should always have the ability to release custom firmware for the device any time Sony updates the console's software. Custom firmware gives PS3 owners the ability to run pirated games, homebrew software (such as retro game emulators), and even Linux.

"This means that all future firmwares and all future games are decryptable, and this time around they [Sony] really can't do anything about it," Marcan, one of the players in the fail0verflow exploit, wrote in a related Slashdot thread. "By extension, this means that given the usual cat-and-mouse game of analyzing and patching firmware, every current user of vulnerable or hacked firmware should be able to maintain that state through all future updates, as all future firmwares can be decrypted and patched and resigned for old PS3s."

Unfortunately, unless your PS3 runs custom firmware, or can downgrade to a custom firmware, the exploit means relatively nothing -- for now. Check out a very informative FAQ -- which derives from Marcan's observations of the breakthrough -- that describes the implications of the PS3 hack in plain english at the Wololo forums.

The group responsible for releasing the PS3 LV0 codes to the public only did so because a rival group had supposedly stolen the information, and planned to sell custom firmware based on it for profit.

"You can be sure that if it wouldn't have been for this leak, this key would never have seen the light of day, only the fear of our work being used by others to make money out of it has forced us to release this now," wrote the Musketeers in a note attached to the LV0 reveal.

CNET has contacted Sony for comment and will update this report when we learn more.



I'm not really here!

Link: Shipment History Since 1995


Around the Network

Well... hope they weren't planning to use that for the PS4.



Only work with already hacked PS3 (before firmware 3.55)... so if you have a old PS3 hacked you can use the lastest firmware hacked.

That's not work with PS3 updated with official firmware > 3.55.



ethomaz said:

Only work with already hacked PS3 (before firmware 3.55)... so if you have a old PS3 hacked you can use the lastest firmware hacked.

That's not work with PS3 updated with official firmware > 3.55.


From what I've gathered you only need a PS3 that was manufactured when 3.55 has not been released yet.
Then you can still downgrade to 3.55 even if you had 4.X on it.
So still the vast majority of all sold PS3s are able to do this.



Sony lets slip its PlayStation 3 Master Key - oops!
by Alistair Lowe on 25 October 2012, 17:52

Tags: Sony Computers Entertainment Europe (NYSE:SNE)

Quick Link: HEXUS.net/qabocj

Add to My Vault: x


This wouldn't be the first time Sony has leaked important security keys, common to every PlayStation 3 console, however, this is the first time the console's LV0 decryption keys have been let loose in the wild.

So what makes the LV0 keys so special? These are the core security keys of the console, used to decrypt new firmware updates. With these keys in-hand, makers of custom firmwares (CFW) can easily decrypt any future firmware updates released by Sony, remaining a step ahead of the update game; likewise, modifying firmwares and preventing them from talking back to Sony HQ also becomes a much easier task.

Up until now, Sony's PlayStation 3 has been the most secure of the mass-market home consoles, with initial hacks late to arrive and updates to the console's firmware stopping any further progress in its tracks. So where has Sony gone wrong and what can the firm do to resolve the issue?

Perhaps the most obvious mistake was to allow keys to leak in the first place, which were extracted through a flaw in the console's hypervisor. Another is that the firm will have had the opportunity to provide a unique key for each console, however likely opted out of this to decrease the complexity of the firmware update system.

Sony PlayStation 3

Going forward, Sony likely has three routes, the first would be to frequently release confusing firmware updates to keep hackers at bay long-enough to push-out the next firmware update with new security. The second would be a more proactive approach, where the firm delivers an update that will at-last generate new unique keys for consoles, preventing the use of any universal custom firmware, though, this is assuming that the LV0 key can be locked-out as an override. The third, long-term approach, would be to ship all new PlayStation 3 consoles from now-on with new master keys.

The group that released the new CFW with LV0 master keys calls itself "The Three Musketeers". It claims that it only released the keys now, in the knowledge that a Chinese group also planned to release the keys, however, for a profit.

Perhaps Sony and the industry in general can thankful that this leak has happened less than a year before the expected launch of the PlayStation 4.



I'm not really here!

Link: Shipment History Since 1995


Around the Network

Sales boost incoming ;o



so from this about 100 people can hack the ps3



pezus said:
Sales boost incoming ;o

Typical of Sony that they give the PS3 a big exclusive application that the Vita is much more in need of.



Legend11 correctly predicted that GTA IV (360+PS3) would outsell SSBB. I was wrong.

A Biased Review Reloaded / Open Your Eyes / Switch Gamers Club

pezus said:
Sales boost incoming ;o


That was my thought but sadly(happily idunno)... guess it's only old models.



RolStoppable said:
pezus said:
Sales boost incoming ;o

Typical of Sony that they give the PS3 a big exclusive application that the Vita is much more in need of.