PS3 Hacked via USB Dongle

dlove67 writes "PSX-scene.com reports that the first PS3 modchip has been tested and confirmed to be working. Running off of a USB dongle, it appears to be relatively user friendly and claims to not void your warranty. Online gameplay works (at least for the time being). It's been a long time coming; cheers to the PS Jailbreak Guys." The video is attached below if you're curious. Can't help but point out that this wouldn't have happened if Sony hadn't decided to yank the Boot Other OS option.

What does this mean for cheats/aimbots?

[dave562]

The whole reason I bought a PS3 was because it was a closed platform, and because it was a closed platform, it was harder to hack the games. I like playing FPS games and they are absolutely ruined as soon as you have to deal with wallhacks and aimbots. Will this new hack open the door to programs like that?

Re:What does this mean for cheats/aimbots?

[tepples]

The whole reason I bought a PS3 was because it was a closed platform

Which is one of the reasons why I did not. Closed platforms tend not to get indie games or legitimate mods. If Half-Life were for a closed platform, for instance, there wouldn't have been a Counter-Strike.

Re:What does this mean for cheats/aimbots?

[Eponymous+Coward]

Did you still want to keep Other OS? You had the option to decline their update.

The problem is that by declining the update, you were effectively locked out of online game play, including for games you already owned. So, they didn't send killbots to your house, but they did force you to chose other OS xor games. For those that bought the console because it could do both, this really sucks.

Re:What does this mean for cheats/aimbots?

[cgenman]

What? I'm failing to see how some of this is Security through Obscurity. There was a security hole in the other OS that they couldn't think of a way of patching without removing the core functionality, so they removed it. That makes sense from a security standpoint.

They're going through security through security. They patch holes, make improvements, and get better at this whole thing. The PS1 was hackable in 1 wire. The PS2 required an additional circuit board for a mod chip. The PS3 isn't pragmatically hackable in that way, because they improved their security. Now someone found a hole in the USB stack. This will probably be patched too.

When you say security through obscurity, you usually mean "nobody is going to type in 'website.com/passwords' into the server!" The way you're using it, it makes it sound like any DRM even on a closed platform is doomed. And while that is possible, the pragmatic advantages of avoiding PS1-levels of piracy mean that the program has basically been a success.

Re:What does this mean for cheats/aimbots?

[Hatta]

I like playing FPS games and they are absolutely ruined as soon as you have to deal with.. gamepads.

Re:What does this mean for cheats/aimbots?

[medv4380]

It's not that people weren't interested in hacking the PS3 for piracy. It's just he people with the skill and money to do it have little interest if they have a legit method like OtherOS. Sony locked them out of the GPU functions in otherOS so they were constantly trying to figure out how. When they did Sony took OtherOS away with the firmware updated. This made those people who are very skilled move down the path of a mod chip which has the added benefit of all the morally corrupt people who want to use the chip to pirate will be able to use it to pirate or home brew. OtherOS ultimately was an anti-piracy measure as shown by how long it has taken to crack since it was taken away.

Re:What does this mean for cheats/aimbots?

[Joe+Snipe]

It's the good old "any justification I can grasp at for piracy".

For myself it's knowing that every game I pirate steals money right out from their greedy little hands. These huge companies like EA and Sony who screw their customers and their staff alike for their C*Os err, shareholders. That's why sometimes I pirate the same game three or four times! Thats like taking $200 right out of their pockets! i don't even plan on owning a PS3 but already I have amassed a pretty substantial library of "backups" (and even backup backups!). Take that fat-cats!

Tag article slashvertisement

[TrisexualPuppy]

The forum link is broken. The video does not say anything about how they did it or how it works. It's merely a suggestion that the product does work and then is a link to where to buy it.

Nothing to see here.

Re:Tag article slashvertisement

[Mad+Leper]

Yeah, this is quite obviously a fake. For a PS3 hack to suddenly appear out of nowhere and a rumored $170 fee for the USB stick just stinks of rip-off.

The PS3 has resisted cracking for over three years, even the great Geohot tried and failed to even make a dent. The fact that it's been impossible to play cracked games on the PS3 has worked the pirate community into such a tizzy that it's likely we'll see more scams like this in the future.

The obvious fix from Sony...

Sony will disable all USB ports on the PS3 in the next firmware update.

Re:The obvious fix from Sony...

[Pojut]

Don't give them any ideas, clod!

Re:The obvious fix from Sony...

They already told me they won't do this when I complained about "Other OS" removal.

Quote from Playstation Consumer Services:
"There would not be able reason to remove the features of your PS3 System that you have mention, card readers USB ports or backwards compatibility. They are physical attributes that your PS3 System possesses and do not present a security threat as the option that Install other OS does in this case does."

Re:What has this to do with sony yanking linux?

[Mad-Mage1]

the recent push to "crack" the PS3 OS was due to the removal of that function, which Sony did to try to prevent the cracking of their OS. Oh, the circular eddies of irony that feed our world :D

Re:What has this to do with sony yanking linux?

[Mooga]

Sony claimed that they removed the Boot Other OS options to prevent this type of hacking.

Re:What has this to do with sony yanking linux?

Can't help but point out that this wouldn't have happened if Sony hadn't decided to yank the Boot Other OS option.

why? Can somebody please explain? the linked site seems down so maybe that's what I'm missing.

because nobody uses mod-chips to pirate games, they only use them to boot linux and run homebrew, since computers are so expensive and PS3s are so cheap, this is the only option that some people have. There aren't many pieces of consumer electronics that can run linux, you know.

Most of the pirates don't have the technical abilities to hack a console. The people who do have the technical ability and inclination to hack a console, won't bother if they can tinker with it themselves without bypassing the security, which OtherOS allowed them to do. By removing OtherOS, they were basically asking the people with the skills, ability and inclination to bypass their security so that they could put another OS back on.

The initial heavy lifting to hack the original XBox, 360 and Wii were done by people trying to put Linux on them.

Re:What has this to do with sony yanking linux?

[Trevelyan]

Homebrew scene != Pirate scene

The homebrew guys are generally more motivated and talented then the pirates. Almost all console hacks come from the homebrew guys so that they can run their own stuff (and linux).

The pirates tend to take homebrew code and use it to run pirated games.

The entire time that PS2 had the "Other OS" option it was not cracked, because the homebrew community could already run their stuff. Compare that to XBOX and WII both of which have been broken a long time ago. As soon as Sony closed off the homebrew community, the inevitable would happen.

Of course its not so black and white, there is overlap between homebrew and pirates, but not as much as you might assume. Take a look at TeamTwizzers long campaign against pirates from using their code. They even tried in the beginning to have a dialogue with Nintendo about ways to support homebrew and keep the pirates out.

Going back to PS2; even with the "Other OS" option the advanced graphic features were locked, so homebrew games could never take full advantage of the hardware (neither could Other OS be used for pirate games). Some months ago a way was found for full hardware access, and not long after that Sony reacted by removing the Other OS feature.

Re:What has this to do with sony yanking linux?

[marcansoft]

The PS3 was secure through obscurity (besides any actual security present), much like the Wii was in its infancy (Wii drivechips notwithstanding, those are a whole different ballgame). Obscurity works a lot better than security for consoles, because they are big, complex systems that inevitably have holes. Obscurity is useful up until the first hack is published, which is when people finally get to poke at dumps of your software and expose your bugs. The more you can delay that from happening, the better. The Wii did a good job of this by encrypting and signing every piece of data on Wii game discs, for example. There were bugs, but nobody could figure them out without access to decrypted binaries.

We don't know if someone involved in PS3 homebrew hacking had anything to do with this, but it's certain that whoever did this at the very least used techniques developed as a result of the Other OS remioval during development. Specifically, until the Other OS fiasco happened, there was no way to dump PS3 software and analyze it for exploits. Now there is.

Both the Wii and the PS3 obscurity-breaking hacks were almost identical: RAM glitching to escalate privileges from an unprivileged mode in order to access secure areas. The Twiizer Attack on the Wii glitched the RAM address lines in order to dump secure software and keys from insecure GameCube mode, and geohot's PS3 exploit used RAM glitching in order to make the hypervisor unwillingly give you read/write access to secure RAM while in insecure Other OS mode. When software is obscure, hardware is the only way to go. This Wii attack paved the way for Wii software exploits, and certainly this PS3 USB device is based upon exploits uncovered by dumping via the memory glitching exploits released earlier this year after Sony pulled Other OS.

So yes, Sony basically asked for this by pulling Other OS and angrying legitimate hackers who used Other OS, and now they got what they asked for. I'm just glad some piracy company did it first instead of repeating the story of the Wii where pirates piggyback on homebrew.

The one sad, sad thing is that this is called "PS3 jailbreak". Jailbreak is a very specific term that describes breaking out of a filesystem jail (e.g. on the iPhone), and it's being used on the PS3 purely for "brand recognition". This will just make people associate jailbreaks with piracy.

Re:What has this to do with sony yanking linux?

[Superken7]

I know, thats why this story is surprising, because its exactly the opposite as what you just said.

Otherwise they would have at demoed booting linux at least.
Also, I have not read any text of the official release so I don't know if they mention any of this, but this might very well just be coincidence. Or maybe not..

If it sounds too good to be true...

• A simple dongle that puts your PS3 into debug mode and allows you to play games off an external hard drive.
• Costs very little
• Doesn't void your warranty
• Forum link is down
• Advert in video for where to buy
• Camera stays mostly on the TV, so we can't see if any other PS3s or equipment is involved...
• Whilst others have struggled to hack the PS3, these guys have come out of nowhere with a full blown, working solution... one that you can immediately purchase!

Re:What has this to do with sony yanking linux?

[somersault]

Yeah I found it rather sad when he was like "now this is what you've all been waiting for!", I thought he was going to load Other OS - but instead he demonstrates that you can now pirate games.. what an asshole..

Re:What has this to do with sony yanking linux?

[Superken7]

I agree with all you have said but one thing: if it were the hackers who have enabled this hack they would have demoed booting OtherOS, downgrading or whatever.
But clearly it is the pirates here who have done the hack from start to finish. Unless they borrowed it from other "homebrew" guys who were keeping it in private..

That is a debug unit

[GrugVoth]

I think most of you are missing the fact that this is running on a debug unit which already has the capability to run unsigned code and code off of hard drives with no restrictions. The USB dongle has nothing to do with that, until this can be show running on a non-debug unit this is very bogus.

Re:What has this to do with sony yanking linux?

[WhitetailKitten]

The initial heavy lifting to hack the original XBox, 360 and Wii were done by people trying to put Linux on them.

I'm going to back up AC on this one, at least with respect to the Wii. Team Twiizers, the team of hackers (as in, tinkering, not cheaters) have released multiple tools to not only allow and facilitate non-pirate homebrew software to run, they also actually have made efforts to fix critical flaws in Nintendo's design of the Wii. This includes ways to recover a bricked console, which came into play when Nintendo's own official system updates (designed to block homebrew and piracy indiscriminately) were sloppy to the point of being capable of bricking unmodified Wiis.

Team Twiizers also go out of their way to specifically discourage and hamper piracy, including making their software run upside-down on-screen if you've hacked your Wii so much that you must be using it for piracy. They really want to avoid large-scale piracy, because it'll just give Nintendo the incentive to try and lock the Wii back down, depriving everyone of the non-piracy uses for homebrew. They'll happily help with installing Linux on your Wii, and there are guides for using it as a media center, a ScummVM host, and even a VNC client. You can also emulate pretty much every game console in history up to the PS1, as well as MAME, but finding roms (and whatever trouble that might cause) is up to you. However, they make it clear that discussions of piracy are unwelcome.

Re:What has this to do with sony yanking linux?

[kg8484]

I think you are missing the point of the argument that others are making. Let's take your two circles. The first is the size of a quarter and represents users that want to run Linux, and the second circle is the number of people who want to pirate games and that is 50 meters in diameter. However, you will find that not everyone in either circle has the technical proficiency to actually do the hacking, but the average technical aptitude of people in the Linux circle is far greater than the mean aptitude in the piracy circle. The real comparison needs to be between the people who want to run Linux, have the technical ability to do the hacking and are willing to invest the time to do it versus to the people whose motivation is piracy. The argument that is made is that the Linux circle now shrinks to the size of a dime, whereas you would need a microscope to see the piracy circle.

Re:What has this to do with sony yanking linux?

[WhitetailKitten]

Except that the only reason that people by these mod chips is to play burned games. To claim this has anything to do with homebrew or being able to install Linux is naïveté to the highest degree.

Because there's no way someone would modchip a Wii (before software homebrew was refined to its current pretty-damn-easy standard) in order to plug a mass-storage USB device in and use their console as both a home media center and a game machine. That could never, ever happen. It's inconceivable.

Oh, wait. A simple Google search returns a bunch of sites that want to sell you the (free) homebrew software (in violation of copyright--yes, Team Twiizers' homebrew software is original, not stolen from Nintendo, so they technically hold copyright), and they tout being able to use your Wii to play back pretty much any type of video or sound file VLC can understand. You lose. Player 1 insert coin.