News

PS3 hackers release firmware crack circumventing Sony security
Posted: 23.10.2012 18:30 by Comments: 8
Almost as a direct reply to a US judge's pardoning Sony of responsibility for the 2011 hacking of the PlayStation Network, Chinese hacking group The Three Tuskateers released BlueDiskCFW, a custom firmware that would circumvent security, both current and future.

Sony had fixed the exploits used by Fail0verflow in the 3.60 firmware update, but with BlueDiskCFW, compromised consoles can log into PSN with LV0 decryption keys to bypass future security updates.

US District Judge Anthony Battaglia claimed that Sony was free of responsibility from the PlayStation Network intrusion because the service was free, ignoring the fact that user accounts and data info was compromised.
Source: VG247

Comments

By herodotus (SI Herodotus) on Oct 23, 2012
herodotus
As I thought, the hacker reaction would be swift and unrelenting. The new and revamped PS Store opened in the UK yesterday and the U.S. supposedly today will probably be the next target.
By nocutius (SI Elite) on Oct 24, 2012
nocutius
How can someone bypass future security updates without even knowing them? Can't Sony detect custom firmware running on the consoles? I'd get it if we were talking offline but logging into PSN seems a bit much. I'm not claiming anything, just wondering.
By wolfsrain (SI Member) on Oct 24, 2012
wolfsrain
It was done before on PSP (still is). So, yeah it's possible. Also there is a way to circumvent the store check for custom firmware. So nothing impossible. You know what they say: if it's manmade, it can be countered.
By nocutius (SI Elite) on Oct 24, 2012
nocutius
True, but that should also apply to counters themselves should it not?
By wolfsrain (SI Member) on Oct 24, 2012
wolfsrain
True, but in the end Sony was the one that had to admit defeat. The latest firmwares for PSP can access the store.
By nocutius (SI Elite) on Oct 24, 2012
nocutius
I didn't know that. Damn, Sony got owned really badly then.
By herodotus (SI Herodotus) on Oct 24, 2012
herodotus
And will be again. One of the top 5 targets for hacker groups.
By noobst3R (SI Core) on Oct 24, 2012
noobst3R
Nice move. ^^