Geohot Releases Signing Tools
Geohot Releases 3.55 Jailbreak
Summary of the hack by GamesIndustry.biz
Geohot Demos Homebrew on 3.55
KaKaRoTo Downgrades v3.55 PS3 Console to v3.41
Marcan shows Linux demo on PS3 Slim
Excellent BBC Summary of Events
KaKaRoToKS releases first PoC Custom Firmware (not recommended for use)
Digital Foundry Article: Hackers leave PS3 security in tatters
3.50/3.55 appldr keys found
PSP Keys Found
PS3 Blu Ray AACS Keys Vulnerable
Geohot Releases Metldr Key - All other keys vulnerable
<@Mathieulh> so, question, who's gonna grab sony's AACS keys from the .isoself module and leak them ? xD
<@Mathieulh> I don't want to leak AACS shit
<@Mathieulh> too risky xD
fail0verflow opens git, releases tools.
Original Post from 29/12:
This is from the guys behind the Homebrew Channel. Revealed today at 27c3.
Video of presentation:
Part 1: http://www.youtube.com/watch?v=X6CA4fqAdsc
Part 2: http://www.youtube.com/watch?v=X8ohOy8_XO4
Part 3: http://www.youtube.com/watch?v=Eag0VyRTld8
Nice summary from PSGroove.com:
Essentially this will allow anyone to sign executables and run them on any retail PS3.
Sony's PS3 Security is Epic Fail
The first few minutes of the conference were spent explaining the state of security on other consoles (Wii, 360, etc). Following this, the group went on to explain the current state of affairs on the PS3. First, explaining Geohot's memory line glitching exploit from earlier this year. The team then went on to explain the current PS3 security bypasses, such as jailbreaking and service mode/downgrading.
Approximately a half hour in, the team revealed their new PS3 secrets, the moment we all were waiting for. One of the major highlights here was, dongle-less jailbreaking by overflowing the bootup NOR flash, giving complete control over the system. The other major feat, was calculating the public private keys (due to botched security), giving users the ability to sign their own SELFs Following this, the team declared Sony's security to be EPIC FAIL!
The recent advent of these new exploits means current firmware is vulnerable, v3.55 and possibly beyond. It will be very difficult for Sony to fix the described exploits.
The team then displayed the website http://fail0verflow.com/ were we assume will host examples of the new exploits and further details. They stated that easy to use tools would be coming next month.
Read more: PSGroove.com - Sony's PS3 Security is Epic Fail http://psgroove.com/content.php?581-...#ixzz19WMUJZAE
From fail0verflow's twitter:
(AsbestOS is marcan's linux loader for PS3)
Our current PS3 goal: AsbestOS.pup
our goal is to have linux running on all existing PS3 consoles, whatever their firmware versions.