Petty Officer 1st Class
Posts : 187
Join date : 2010-03-18
|Subject: PS3 Security has been fully compromised Wed Dec 29, 2010 9:09 pm|| |
- Quote :
- Prominent hackers Bushing, Marcan, and Sven took the stage at this year’s annual Chaos Communication Congress (27C3) to showcase their latest underground efforts on PS3. The trio describe Sony’s security measures as an ‘epic fail,’ pointing to the botched implementation of ECDSA. Apparently, the so-called ‘random’ number used to create the private key is always static.
What does mean for you, the end-user? Well, it means that homebrew devs can essentially sign their own applications. The keys generated as every bit as valid Sony’s own official signatures. Full control means custom firmware is within grasp. What’s more, is that the feat is valid for all current firmware up to 3.55 and possibly beyond.
We’ve embedded a video after the break highlighting the key segments of this talk. While a workable implementation of the hack has yet to be released, the team promises it is coming soon. In the meantime, they’ve launched a website aptly dubbed fail0verflow.
So it looks like its game over for the PS3 in terms of security.It just took the right group to come along
In lulzy fashion they said the group were not intrested in hacking the system until Sony removed the Otheros feature.Karma is a bitch
27C3 - Console Hacking 2010 from Yifan Lu on Vimeo.
Four Star General (Moderator)
Posts : 2309
Join date : 2009-12-01
Location : US