Tag Archives: Jailbreak

The Sony PlayStation 3 Finally Hacked

The Chaos Communication Congress is an international hacker conference organized every year by the Chaos Computer Club of Germany. Every year, hacker teams and security analysts discuss the latest vulnerabilities, exploits and security enhancements for a variety of devices and networks. The 27th Congress, (27C3) dubbed We Come in Peacehas been going on in full flow and has attracted the best minds in the field of computer security.

One of the biggest announcements came today from the hacker group fail 0verflowwho, in effect, have completely taken control of the unhackable(until a few months ago) Sony PlayStation 3.   While many alternatives exist to hack the PS3, the hackers at the conference dropped a bomb on Sony by showing how botched up the security detail on the PS3 actually is and how anyone can exploit this vulnerability with ease.

The Specifics: Apparently the randomnumber used to create every private key on the system is actually a constant number on all retail PS3s. In coding, random numbers are usually seededfor the random number generation algorith, i.e. the origin of any random value can be anything from the current time and date to the position of the mouse pointer in the X and Y coordinate system. Thus, it is well nigh impossible to calculate any randomly generated number simply because of its chaotic origin. However the (rather hippy) fail 0verflow hacker showed that, through complex math, the private key can be calculated from the static number.

What this means: The most promising consequence is dongle-less jailbreaking, similar to the PSP’s homebrew enabling software, as a coding exploit can utilize this piece of information and give the use complete control of the console.

What the future holds: Fail 0verflow have said that their primary goal is to make all PS3s run Linux. While the legacy (80GB) PS3s had this functionality, it was since withdrawn by Sony. Fail 0verflow have said that their project in no way involves piracy. Nevertheless, it is very likely that their exploit will be used for pirating games eventually. Since this breach of security is huge and so intricately lined with the innards of the PS3 firmware, it will be difficult for Sony to patch this up.

The three video presentations by fail 0verflow are embedded below.

[via PSGroove]

iH8sn0w Twitter Account Hacked

It looks like one of the most popular jailbreaking developers account has been hacked on . The account which went by the name of @iH8sn0w has now been renamed to @somedumbass.

iH8sn0w Twitter Account Hacked

iH8sn0w is the developer of the popular iPhone jailbreak software which goes by the same name. A few minutes ago the account sent out an update saying that the account is compromised. However, there is no news as to how it happened. We’ll continue investigating this and update the post once we have more news.

Unlock/Jailbreak Windows Phone 7 Handsets

It was in early November that Microsoft released its brand new WP7 based OS along with a bunch of handsets from HTC, Samsung and Dell. It is still unknown whether these WP7 based handsets managed to set the sales chart on fire, but nevertheless the OS has managed to gain the interest of hackers and modders.

The result of this is ChevronWP7 tool. This application allows WP7 users to jailbreak/unlock their handset thus allowing them to side-load content on the device without a developer account.

windows_phone_7_logo

The step to unlock your WP7 device is a pretty simple one. Users just need to connect their WP7 handset to their PC via a USB cable and run the ChevronWP7 tool. Once the application detects your handset, users just need to press the unlock button to unlock/jailbreak their device.

However, this unlock does not mean that users can install pirated apps on their handset. All WP7 based apps are secure enough so as not to install on any handset without the Windows Marketplace. However, this jailbreak does open the gates to the huge modding possibility of the WP7 platform.

I am pretty sure we will be seeing modders take advantage of this unlock for adding new features to their handset in the future. Please note that certain reports say that using the ChevronWP7 tools can leave your handset unusable, so you might want to proceed with caution here.

You can download ChevronWP7 from http://www.chevronwp7.com/.

Jailbreak iOS 4.2.1 with Redsn0w

Yesterday, Apple released the highly anticipated iOS 4.2.1 for the iPod Touch, iPhone and the iPad. The iOS4.2 update is a minor one for the iPod Touch and the iPhone but it brings a bucket load of changes for the iPad. With the iOS 4.2.1 update, the iPad gets AirPlay, AirPrint, Game Center and Multi-tasking etcetera.

Today, the iPhone Dev Team has released an updated version of Redsn0w which is capable of jailbreaking users’ iTouch device running on iOS 4.2. The only downside is that the jailbreak is a tethered one which means that users need to jailbreak their iTouch device again when they restart it. However, for the iPhone 3GS (older boot rom), iPhone 3G and the iPod Touch 2G (Non-MC) this jailbreak is an untethered one.

Here are the steps to jailbreak your iTouch device using Redsn0w 0.9.6b4 :

Step 1: First and foremost, users need to update their iTouch device to iOS 4.2.1 using iTunes 10.1. They also need to download Redsn0w from here. You can also directly download iOS 4.2.1 IPSW.

Step 2: After that, users need to fire up Redsn0w and point it to the iOS 4.2.1 IPSW file. Once the IPSW file has been successfully identified by Redsn0w, users need to click on the Next’ button to proceed.

redsn0w Jailbreak iOS 4.2

Step 3: Users then need to select the Install Cydia’ option along with any other feature they would like to use.

redsn0w Jailbreak iOS 4.2 Install Cydia

Before proceeding with the next step, users need to make sure that their iTouch device is switched off and plugged in to the computer.

Step 4: Now, in the next step users need to hold the Power’ button and whilst holding the power button, they need to hold the Home’ button. After around 10 seconds, users need to release the Power’ button whilst still pressing the Home’ button.

redsn0w Jailbreak iOS 4.2 DFU Mode

Step 5: After this, Redsn0w will work its magic and will jailbreak your iTouch device running iOS4.2.1.

This step is only for iPhone 4, iPhone 3GS (newer boot rom), iPod Touch 4G, 3G, 2G and iPad owners.

redsn0w Jailbreak iOS 4.2 Rebooting

Step 6: Since this Redsn0w jailbreak is a tethered one for the above said iTouch devices, users need to use the Just boot tethered right now’ option in Redsn0w every time they restart their iTouch device.

That’s it folks! You have now managed to successfully jailbreak your iTouch device running on iOS4.2.1.

(Source)

iPhone Dev. Team Blogs About Geohot’s Limera1n Exploit, Updated Redsn0w And iOS4.2.x Jailbreaking

The iPhone Dev. team has explained in a pretty lengthy blog post about Geohot’s limera1n exploit for the iTouch devices, updated version of redsn0w, iOS 4.2 and unlocking your iTouch device on iOS4.2. First and foremost, Geohot’s limera1n exploit is capable of jailbreak-ing all iTouch devices on any iOS version.

The latest version of redsn0w incorporates the limera1n exploits along with custom boot logos for the iPhone 3G/3GS and iPod 2G devices and an option to apply DFU’ button in PwnageTool. iTouch device owners who have unlocked their device are recommended not to tinker around with any of the latest exploits until an easier method comes out.

If users make any mistake, they might lose their unlock permanently. The blog post also mentions that the iOS 4.2.x jailbreak is untethered at the moment. Users need to wait until @comex manages to come up with a way to untether it.

For now, only the iPhone 3G, older bootrom based iPhone 3GS and iPod Touch 2G (non-MC) can be untethered jailbreak by redsn0w on iOS4.2.x.

Download PwnageTool 4.1 To Jailbreak iPhone 4/iPod Touch

The iPhone Dev Team has finally released PwnageTool 4.1. The application uses Geohot’s boot rom exploit to build custom IPSW/firmware files for most of the iTouch devices out there. By creating custom firmwares, users can update their iTouch device to the latest firmware without upgrading their baseband. This will help them in preserving their unlock and update to the latest iOS as well.Pwnage_Tool

As of now, PwnageTool 4.1 supports the iPhone 3G, 3GS (Old as well as new boot roms) running on iOS 4.1 and the iPhone 4 running on iOS4.1 as well. The Apple iPad running on iOS 3.2.2 and Apple TV 2G running iOS 4.1 are supported as well. The iPod Touch 3G and iPod Touch 4G running iOS 4.1 are supported as well.

At the moment, PwnageTool 4.1 is available only for Mac. Users can read more about PwnageTool 4.1 here.

(Source)

How To Jailbreak iOS 4.1 iPhone/iPod Touch with Greenpois0n

The Chronic Dev Team released GreenPois0n a few days ago which allows users to jailbreak iPhone 3GS, iPhone 4, iPad and iPod Touch 3G/4G. Support for Apple TV and iPod Touch 2G is also on the cards. The GreenPois0n jailbreak is based on the same boot rom exploit as the one used by Geohot in Limera1n. The Chronic Dev Team preserved the SHAtterexploit for future as they did not want Apple to fix two boot rom exploits in one update and thus give them an edge in this cat-and-mouse’ game.

Users who are looking to jailbreak their iTouch device using GreenPois0n should follow the instructions below. However, before proceeding with this jailbreaking process, users should make sure that they do not update their phone to iOS4.1 using iTunes. By doing so, they will update their baseband, thus losing the network unlock for the time being. They are recommended to use TinyUmbrella to update their iTouch to iOS4.1 without updating the baseband.

Here are the steps to jailbreak iPhone 3GS, iPhone 4, iPod Touch 3G/4G and iPad :

Step 1) Users should first download GreenPois0n from here. After starting the program, switch off your iTouch device and connect it to your computer’s USB port. After that, press the Prepare to Jailbreak (DFU)’ in GreenPois0n. Users should make sure that iTunes is not running in the background.

Step_1

Step 2) After that, users need to hold down the Sleep button for 2 seconds. After that while they continue holding the Sleep button, they should press the Home button as well for another 10 seconds. Then they should release the Sleep button whilst holding the Home button for another 15 seconds.

Step 3) Once your iTouch has entered the DFU mode, GreenPois0n will show the Jailbreak’ button. Press the Jailbreak’ button and let GreenPois0n inject its Pois0n on your iTouch. Once the jailbreak is complete, your iTouch device will automatically start up.

Step 4) The final step is to start the Loader’ application found on your iTouch device and install Cydia.

That’s it! Your iTouch is now successfully jailbroken with Cydia installed as well.

GreenPois0n Goes Live. Supports Your Favorite OS.

As of roughly one hour ago, the Chronic-Dev team have released greenpois0n with support for OS X, Windows and Linux. A few days late, but revised to ensure integral system exploits aren’t unnecessarily exposed to Apple, users of all popular platforms can now free their iOS devices.

Greenpois0n is an alternative to Limera1n, that uses the same exploit delivery and payload as geohot’s tool but built by the Chronic Dev Team. It allows users to jailbreak the iPhone 4 and 3GS as well as variants of the iPad and iPod Touch devices running 4.1. Not much separates these 2 applications from a users point of view, however greenpois0n is said to be more stable and have better support, coming from a team who have been on the iPhone scene since the beginning.

If you run into any issues, the team is available in #greenpois0n on irc.chronic-dev.org for questions and limited support.

Limera1n Released; Jailbreaks Your iTouch For Life!

It was just yesterday that we told you about Geohot making a comeback to the iTouch jailbreaking scene with limera1n. Today, Geohot has released his latest jailbreaking tool limera1n. The application will allow users to jailbreak iPhone 3GS, iPod Touch 3G, iPad (3.2), iPhone 4 and the iPod Touch 4G running on iOS 4.0/4.1. limera1n is an untethered jailbreak (thanks to comex) which will jailbreak your iTouch device for life. As of now, the application is available only for Windows with the Mac version coming soon. Limera1n.jpg

The application should technically also support Apple TV. However, due to the release of limera1n the Chronic Dev team had to push back their release of GreenPois0n. As stated earlierlimera1n and GreenPois0n use different boot rom exploits to jailbreak the various iTouch devices from Apple.

The Chronic Dev team did this because they did not want to waste’ the SHAtter’ boot rom exploit and let Apple win the cat and mouse’ game.

GeoHot Limera1n App Brings Him Back to Jailbreaking

Nearly three months ago, we had reported that Geohot has decided to ditch the iTouch jailbreak scene. Now Geohot is all set to make a comeback to the iTouch jailbreaking scene with his latest tool Limera1n. This new tool from Geohot will be able to jailbreak all the various iTouch devices including the iPhone 4. Limera1n will be released on 10/11/10 i.e. on October 11; exactly a year after blackra1n was released.

Limera1n

However, the Chronic-Dev team is not happy with this move from Geohot. The Chronic Dev team will also be releasing a new jailbreaking tool GreenPois0n. The tool will be able to jailbreak all the iTouch devices running on iOS 4.1 and will be released on 10/10/10 at 10:10:10. Both Limera1n and GreenPois0n will jailbreak all the iTouch devices for life using boot rom exploits. Geohot’s Limera1n will be using a different boot rom exploit than the SHAtter’ exploit being used by Chronic Dev team.

The Chronic Dev team wants Geohot to save his new boot rom exploit for the next generation iPhone and iPad.

(Source)