Geohot (iphone jailbreak kid) has hacked the PS3.

[Tyche]

http://geohotps3.blogspot.com/

I have read/write access to the entire system memory, and HV level access to the processor. In other words, I have hacked the PS3. The rest is just software. And reversing. I have a lot of reversing ahead of me, as I now have dumps of LV0 and LV1. I've also dumped the NAND without removing it or a modchip.

3 years, 2 months, 11 days...thats a pretty secure system

Took 5 weeks, 3 in Boston, 2 here, very simple hardware cleverly applied, and some not so simple software.

Shout out to George Kharrat from iPhoneMod Brasil for giving me this PS3 a year and a half ago to hack. Sorry it took me so long

As far as the exploit goes, I'm not revealing it yet. The theory isn't really patchable, but they can make implementations much harder. Also, for obvious reasons I can't post dumps. I'm hoping to find the decryption keys and post them, but they may be embedded in hardware. Hopefully keys are setup like the iPhone's KBAG.

A lot more to come...follow @geohot on twitter

[Kaisha]

Long as it doesn't get to the point where pirates make me have mandatory updates to my PS3 every bloody week just to fix holes they discover through their current (supposedly unpatchable as the dude claims) means.

Technically, it has been cracked before via the use of linux on the old-PS3s, but that's been long since patched.
(Sony had to nerf linux as well in the process, I recalled having access to 6 SPUs way back when, where-as nowadays it's only 2)

[Shojin]

I read his blog a few weeks back. He's still got a ways to go finding the keys, and although I find his views on the reasons why he's doing it, wrong, I am excited to see the homebew apps if this comes to fruition.

[Atreides]

I'm sorry but Geohot is the absolute worst name ever

[Shojin]

His name is George Hotz

[Qalbert]

That's no excuse. If my name was Arthur Fagnell I wouldn't go by Artfag.

[Elvis]

If your last name was Fagnell, ArtFag would most likely be superfluous.

[Shojin]

Yes you would.

Also, long read:

http://www.ibm.com/developerworks/po...-cellsecurity/

Basically, cell was designed so that even if the hypervisor is compromised, secure code could still be preserved. Apparently the only way to access the root key is through hardware at IBM? Hmm.

Well, will be interesting to see how far this kid gets anyhow.

EDIT:

Because of the root key's importance in keeping all other keys hidden, it must be robustly protected. The Cell BE processor accomplishes this with its Hardware Root of Secrecy. The root key is embedded in the hardware, and you cannot access it with software means; only a hardware decryption facility has access to it. This makes it much more difficult for software to be somehow manipulated so that the root key is exposed, and of course, the hardware functionality cannot be changed so that the key is exposed.

In fact, the decryption based on the root key can only happen within an isolated SPE and not outside of it; no access to the root key is available, by hardware or software means, from a non-isolated SPE or the PPE. First, this implies that a system designer can force all data decryptions by the root key to happen within the protected environment of the Secure Processing Vault

[Qalbert]

If your last name was Fagnell, ArtFag would most likely be superfluous.

there was a fagnell in the credits of Mass Effect, I think
EDIT: oops, Fagnan not Fagnell, http://www.mobygames.com/developer/s...operId,295247/
also Derek Sidebottom: http://www.mobygames.com/developer/s...operId,295591/

[Cantih]

Sony seems to have learned rather well from the PSP. You can't make a system unhackable, but by god you can make it a pain in the ass. I'm still waiting on CFW to catch up to 6.20.

[Jefe]

Who knows if DA will release a new update for the PSP. Anyway, yeah someone hacked it via Linux long ago and didn't go anywhere.

[Minions]

Who knows if DA will release a new update for the PSP. Anyway, yeah someone hacked it via Linux long ago and didn't go anywhere.

was fake.

[Killgannon]

http://news.bbc.co.uk/2/hi/technology/8478764.stm

A US hacker who gained notoriety for unlocking Apple's iPhone as a teenager has told BBC News that he has now hacked Sony's PlayStation 3 (PS3).

George Hotz said the hack, which could allow people to run pirated games or homemade software, took him five weeks.

He said he was still refining the technique but intended to post full details online soon.

The PS3 is the only games console that has not been hacked, despite being on the market for three years.

"It's supposed to be unhackable - but nothing is unhackable," Mr Hotz told BBC News.

"I can now do whatever I want with the system. It's like I've got an awesome new power - I'm just not sure how to wield it."

Sony said it was "investigating the report" and would "clarify the situation" when it had more information.

'Open curiosity'

Mr Hotz said that he had begun the hack last summer when he had spent three weeks analysing the hardware.

After a long break, he spent a further two weeks cracking the console, which he described as a "very secure system".

He said that he was not yet ready to reveal the full details of the hack but said that it was "5% hardware and 95% software".
Playstation 3 (Sony)
The hack could allow gamers to play pirated games

"You can use hardware to inject an insecurity and then you can build on that," he said.

He admitted that he had not managed to hack the whole system, including the protected memory, but had worked out ways to trick the console into doing what he wanted.

Mr Hotz said that he was continuing to work on the hack and, once finished, would publish details online in a similar way to his previous iPhone exploits.

In particular, he said, he would publish details of the console's "root key", a master code that once known would make it easier for others to decipher and hack other security features on the console.

He said his motivation was "curiosity" and "opening up the platform".

"To tell you the truth, I've never really played a PS3," he said. "I have one game, but I've never really played it."

Opening the system could allow people to install other operating systems on their console and play homemade games, he said.

In addition, he said, the hack would allow people to play older PS2 games on their consoles.

Recent versions of the PS3 do not have the ability to play PS2 games after Sony controversially removed a piece of hardware.

He admitted that it could also allow people to run pirated games.

"I'm not going to personally have anything to do with that," he told BBC News.

Gaming firms do not take the issue of game piracy and console modification lightly. Recently, Microsoft disconnected thousands of gamers from its online gaming service Xbox Live for modifying their consoles to play pirated games.

Mr Hotz said that the nature of his PS3 hack means that Sony may have difficulty patching the exploit.

"We are investigating the report and will clarify the situation once we have more information," said a Sony spokesman.

Mr Hotz rose to fame in 2007 at the age of 17 when he unlocked the iPhone, which could only be used on the AT&T network in the US at launch.

The hack allowed the popular handset to be used on any network.

He has since released various other hacks, allowing people to unlock later versions of the popular handset.

[Acturus]

http://www.bluegartr.com/forum/showthread.php?t=87668

Thought I saw this already...

[ZarakiKujata]

old news in Gaming discussion

[*Shinzon*]

There was a thread in the gaming section about this, though I'm not sure if this article was posted there. Once he posts the Root key, every online game is gonna be ridden with hacks and exploits though, yay.

[Qalbert]

merged

[Tricen]

I went and (tried to) read his blog about when he did the iPhone. I don't know what any of it meant, but I guess it was pretty amazing. Something about JTAG and bootloader or some shit, idk. So, he basically tears things apart, and solders stuff and wins. I think. Idk <_>

[Shojin]

As I posted above, his biggest obstacle will be getting the Root Key from the Cell, until then, he hasn't done shit. At least not until we see "Hello, world".

[Julian]

I think I'm more looking forward to playing pirated ps2 games on my ps3 than to pirate ps3 games, since my ps2 is dying.

How much would a bluray burner and blank blurays cost anyway? >_>;