PS3 3.56 firmware hacked just hours after release

29 Jan 11 04:00 by wconeybeer in category Game Consoles, Piracy To news archive

Assertions from the PS3 hacking community that the PS3 DRM was irreparably broken when the consoles “root key” was released to the public by George “GeoHot” Hotz were tested when Sony attempted a security patch with a mandatory new firmware release late Thursday.

Sony’s hopes were quickly dashed, however, as hackers quickly got to work on dismantling the new firmware and had the job done within just a few hours.

While the description of PS3 firmware 3.56 on Sony’s PlayStation blog was quite vague, Edge reported that the update “introduces a new encryption key which kills all existing homebrew functionality.” Console owners attempting to login to their PlayStation Network (PSN) accounts were prompted to complete the firmware upgrade, which is now required to access online play.

Within hours of noticing that the firmware had been released, well-known hacker Youness Alaoui, known in the community as “KaKaRoToKS”, did the job of unpacking the files and uncovering the version’s signing keys. Per an update on Alaoui’s Twitter account, the tools used to spoof the firmware for installing custom homebrew applications were once again functional.

This seemingly futile game between Sony and the hacking community gained momentum throughout the last half of 2010, after the corporation removed the “Other OS” functionality from all PS3 consoles in April.  By mid-August, a USB hack had been created to run homebrew applications on the console, but Sony fought back. Since then, several new firmware  “security patches” were released, only to be subsequently hacked.

By the end of 2010, hacking group Fail0verflow and Hotz had figured out and published the PS3’s “root key”, at the heart of the console’s DRM, along with all the tools necessary to once again install customer firmware on the systems. Sony responded with a lawsuit against Hotz and the Fail0verflow team, with several charges including violations of the Digital Millennium Copyright Act and the Computer Fraud and Abuse Act.

Yesterday, Sony won a restraining order against Hotz, which requires him to turn over all of his computer equipment to authorities within 10 days.

Though this latest firmware update proved to be useless, Sony may have another trick up their sleeve to discourage unauthorized use of the PS3. Last week, reports surfaced indicating that the company was considering instituting a new serial security system for all Blu-ray Disc games to be used with the console. Sony has not yet commented regarding the validity of that claim.

Time will tell if Sony has any other brilliant ideas that will address and solve their security woes, but today the hackers have won another small victory against The Man.

4 Comments

debro
Posts: 12921
Posted on: 31 Jan 11 12:01
....What part of p8wn3d does sony not understand ....
achromicia
Posts: 1
Posted on: 31 Jan 11 21:22
Not true. The firmware is as secure as anything. The only thing hackers have managed to do is dump some keys which aren't the signing keys. Sony has fixed the random number generation and possibly added a Rootkit to PSN sign-in.

So homebrew does not run on 3.56 and won't until someone finds another method of running code.
tmc8080
Posts: 634
Posted on: 01 Feb 11 00:51
The console's been on the market 3+ years already... might as well stick a fork in it, as consumers are waiting for the next gen consoles. Also doubt the strong growth the "console" gaming industry's had over the last 10 years will be repeated in the next 10 due to the economy among other factors.
justcallmebob
Posts: 979
Posted on: 01 Feb 11 00:55
I'd strongly consider buying a PS3 if I could play my old PS2 games on it . . .

Post a comment

Hello guest,
default
To benefit from all extra features you need to log in or sign up.
signup log in

About this category

Piracy

  • The constant fight against, or enjoyment of pirated movies, music and games: this news covers all that is piracy related, such as lawsuits and P2P services.More about this

Game Consoles

  • Almost any household owns at least one game console. Although its main purpose is playing games, some consoles also provide (HD) video entertainment.More about this
FAQsWhat is BD-Live?How to set up your Xbox 360 to act as a media server?

Most popular headlines

Diablo 3 game fans hit with always-online DRM grief (4)

  • Fri 18 May 20:04 by Seán
  • Software

it appears that Blizzard underestimated the server capacity required to handle all the gamers, thus resulting in Battle.net servers being overloaded and taken offline at launch. As Diablo III requires the user to be logged in with an uninterrupted internet connection to play, most players were greeted with an "Error 37" on the day of launch, unable to play the game.

CD Projekt says the truth is, DRM doesn't work (2)

  • Mon 21 May 22:48 by Seán
  • Piracy

In an interview between Forbes and CD Projekt CEO Marcin Iwinski, Iwinski said the truth is that DRM simply does not work. He said the main problem is that the copy protection is cracked within hours of the release of every game, not to mention the money and development wasted to implement it. Those with pirated versions also have a clean and more functional game!

Why not? PNY announces USB drive with whistle (10)

It could be possible that there is a scenario where you would have loved to be able to whistle on your USB stick, but we really wonder when. To make

FBI to start special service to spy on online communication (1)

Cnet claims that the FBI, the intellige

See all headlines

Active Commenters