crack
Latest
Meganet's Dominator I snoops on four GSM convos at once, fits in your overnight bag
"Dominator I" sounds more like a monster truck than a collection of small boxes that collectively erase 20 years of relatively secure wireless phone service, doesn't it? Alas, what you're looking at here is a convenient, plug-and-play solution for exploiting the hard work the world's hacking community has put into cracking the A5/1 encryption used on GSM networks in Europe and the US over the past few years. The system consists of two nondescript white boxes, two directional antennas that you'll point in the direction of your victim, and a laptop that you can use to get a glimpse at all of the phones currently connected to your nearest cell site and record up to four active calls simultaneously -- and if you're more of the text messaging type, Dominator I's got you covered there, too, with full access to SMS. The company claims that the system was "declassified only last week" and is completely undetectable both by the operator and the end user, putting it in this rare nexus of "awesome" and "completely terrifying." It can't do the 128-bit A5/3 used in UMTS, but now that it's been cracked in a somewhat practical way, we're sure the Dominator II can't be far behind. Follow the break for Meganet's video of the system in action.
iPhone SMS database hacked in 20 seconds, news at 11
It's a story tailor-made for the fear-mongering subset of news media. This week, a pair of gentlemen lured an unsuspecting virgin iPhone to a malicious website and -- with no other input from the user -- stole the phone's entire database of sent, received and even deleted text messages in under 20 seconds, boasting that they could easily lift personal contacts, emails and your naughty, naughty photos as well. Thankfully for us level-headed souls, those gentlemen were Vincenzo Iozzo and Ralf-Philipp Weinmann, security researchers performing for the 2010 Pwn2Own hacking contest, and their $15,000 first prize ensures that the winning formula will go to Apple (and only Apple) for further study. Last year, smartphones emerged from Pwn2Own unscathed even as their desktop counterparts took a beating, but this makes the third year in a row that Safari's gotten its host machines pwned. That said, there's no need for fear -- just a healthy reminder that the Apple logo doesn't give you free license to click links in those oh-so-tempting "beta-test the new iPad!" emails.
1024-bit RSA encryption cracked by carefully starving CPU of electricity
Since 1977, RSA public-key encryption has protected privacy and verified authenticity when using computers, gadgets and web browsers around the globe, with only the most brutish of brute force efforts (and 1,500 years of processing time) felling its 768-bit variety earlier this year. Now, three eggheads (or Wolverines, as it were) at the University of Michigan claim they can break it simply by tweaking a device's power supply. By fluctuating the voltage to the CPU such that it generated a single hardware error per clock cycle, they found that they could cause the server to flip single bits of the private key at a time, allowing them to slowly piece together the password. With a small cluster of 81 Pentium 4 chips and 104 hours of processing time, they were able to successfully hack 1024-bit encryption in OpenSSL on a SPARC-based system, without damaging the computer, leaving a single trace or ending human life as we know it. That's why they're presenting a paper at the Design, Automation and Test conference this week in Europe, and that's why -- until RSA hopefully fixes the flaw -- you should keep a close eye on your server room's power supply.
Windows 7 Activation Technologies Update now live, ready to be dodged
Remember that polarizing Windows 7 Activation Technologies Update we told you about? You know, the one that helps you to "verify that the copy of Windows 7 that is running on your computer is activated correctly and is genuine?" It's available for download now through Windows Update, and it's not particularly easy to spot. The main label simply says "Update for Windows 7," though we'd be sure to avoid KB971033 if you weren't up for having this thing looking into your business. Your call, though. [Thanks, Elijah and bighap]
Windows 7 Activation Technologies Update coming down the pike, will tell you things you (should) already know
Wondering why your PC has been infested with malware, random popups, intermittent shut downs and all sorts of other atypical garbage since the day you installed that downloaded copy of Windows 7? In case you aren't capable of determining that your copy of Windows isn't genuine (as in, you didn't buy it from a legitimate source), Microsoft is about to lend you a serious hand. In the "coming days," the software behemoth will be pushing out a new update for Windows Activation Technologies, which will look for over "70 known and potentially dangerous activation exploits." It sounds as if the update is intended to alert folks who purchased complete PCs from the back of their local White Van that they may have gotten ripped off, but either way, we're not particularly stoked about having yet another item running in the background, consuming system resources and telling us that we've been naughty. Thankfully it's a voluntary update, but keep your eyes peeled if you don't want to okay the installation accidentally. [Thanks, Troy]
3G GSM encryption cracked in less than two hours
Looks like all that GSM code-cracking is progressing faster than we thought. Soon after the discovery of the 64-bit A5/1 GSM encryption flaw last month, the geniuses at Israel's Weizmann Institute of Science went ahead and cracked the KASUMI system -- a 128-bit A5/3 algorithm implemented across 3G networks -- in less than two hours. If you must know, the method applied is dubbed 'related-key sandwich attack' where multiple values of known differentials are processed through the first seven rounds of KASUMI, then using resulting quartets that are identified sharing key differences, subkey materials can be obtained in round eight to build up the 128-bit key. Sure, it's hardly snooping-on-the-go at this speed, but worryingly this was only an 'unoptimized implementation... on a single PC.' At the same time, the paper condemns the presumably red-faced GSM Association for moving from MISTY -- a more computationally-expensive but much stronger predecessor algorithm -- to KASUMI. Guess we'll just have to stick with Skype.
GSM call encryption code cracked, published for the whole world to see
Did you know that the vast majority of calls carried out on the 3.5 billion GSM connections in the world today are protected by a 21-year old 64-bit encryption algorithm? You should now, given that the A5/1 privacy algorithm, devised in 1988, has been deciphered by German computer engineer Karsten Nohl and published as a torrent for fellow code cracking enthusiasts and less benevolent forces to exploit. Worryingly, Karsten and his crew of merry men obtained the binary codes by simple brute force -- they fed enough random strings of numbers in to effectively guess the password. The GSM Association -- which has had a 128-bit A5/3 key available since 2007, but found little takeup from operators -- has responded by having a whinge about Mr. Nohl's intentions and stating that operators could just modify the existing code to re-secure their networks. Right, only a modified 64-bit code is just as vulnerable to cracking as the one that just got cracked. It's important to note that simply having the code is not in itself enough to eavesdrop on a call, as the cracker would be faced with just a vast stream of digital communications -- but Karsten comes back to reassure us that intercepting software is already available in customizable open source varieties. So don't be like Tiger, keep your truly private conversations off the airwaves, at least for a while.
Dev finds Windows Marketplace DRM severely lacking, easily circumventable
Microsoft's Windows Phones just left the chute a few days ago, and already it seems that ye old DRM is getting talked about -- and not in a good way. According to one Chainfire over at XDA-Developers, the so-called "copy protection" involved in keeping applications in place rather than strewn across a neighborhood of handsets is a pitiful joke, requiring just five minutes of tinkering to save the CAB files that the Marketplace app downloads to a separate folder. In other words, that relocated CAB file could be distributed to all of your friends, turning a single purchase into freeware for as many people as you know (or don't know, even). So, Marketplace devs -- does that make you feel all warm and fuzzy on the inside, or what?[Thanks, GreeKNastY]
WPA networks cracked in just under a minute, researchers claim
To think it was just a few months ago that we thought taking 15 minutes to crack WPA encryption was a feat. Researchers from Kobe University in Japan are claiming they can best that by a wide margin by cracking any WPA-protected connection using the TKIP algorithm within just one minute flat. The details will be revealed at a tech conference on September 25th. Feeling paranoid? Bump up your encryption to the still-secure AES algorithm or WPA2... and if you're just wanting to live life on the edge, consider downgrading to WEP -- it's as good as open at this point anyway.
Windows 7 activation already cracked with Lenovo's OEM license key
Sort of funny that Microsoft made a big show of handing over the Windows 7 RTM code to Lenovo and other manufacturers last week -- the first activation crack for the OS has just appeared, and it's based on Lenovo's OEM license key. Oops. The crack apparently works with 32- and 64-bit versions of Windows 7 Ultimate, and it apparently passes Genuine Advantage, so things are looking good for all you wannabe pirates out there. You did buy an upgrade disc, though, right? [Via DownloadSquad]
Netflix Blu-ray movies showing up cracked and unplayable?
That's the word, with a small but vocal group of subscribers claiming their discs are repeatedly arriving with small cracks on their outer edges. It's unclear what might be to blame, even with the extra coating to prevent scratches on Blu-ray, they could still be susceptible to automated mail processing machines, manufacturing defects or perhaps a spontaneous game of mail Frisbee. The Mars Box blog experienced this issue back in '07 with the disc pictured above, but in the last few months reports seem to be picking up again. It's really too bad those extra costs can't buy tougher packaging like the cardboard slips GameFly uses, but Netflix told Wired the problem is "infinitesimally small" and changing shipping wouldn't be cost effective. We know plenty of you rent your discs, let us know, have you been afflicted?[Via Hacking Netflix]Read - The Mars BoxRead - WiredRead - AVS Forum
Peggle Nights out for Mac, leisure time at risk
Peggle Nights is now out for Mac. The game costs $19.95 (there's a 60-min free trial available if you just want to check it out), and is as addictive as crack cocaine covered in sugar, drizzled with chocolate, and floating in original formula Coca-Cola. It should probably be illegal for PopCap to release games -- any court would convict them of the mass murder of free time around the world.Don't believe us? Patrick Klepek over at the MTV Multiplayer blog tried out the game when it showed up on his desk, and let's just say he doesn't have that job any more. Of course, that's unrelated (we think), but still -- PopCap makes some addictive videogames, and Peggle is at the top of the list. Play with caution. And don't forget that the iPhone version of the game is still due out sometime this month.
Peggle coming to iPhone in March
The last vestiges of our dwindling global economic workforce will cease if rumors of Peggle coming to iPhone are true. According to Wired, PopCap Games announced Peggle's next mobile destination via its "official" Twitter feed. The company wouldn't comment further, and actually went so far as to remove the tweet; however, the internet doesn't forget, as evidenced by the image we captured above.Peggle was actually one of our Top 10 games back in 2007. Hopefully, the company removed the tweet not because it was incorrect, but because it intends to keep the secret until iPhone Peggle receives FDA approval. The Peggle must flow.Update: A PopCap representative confirmed to Joystiq that Peggle on iPhone is "launching in early March."
SlySoft takes down BD+ DRM once more
A fresher, probably completely unbreakable version of BD+ isn't even expected until February, but SlySoft's making sure you have plenty to watch on your non-HDCP compliant display over the holidays. The newest refresh of its AnyDVD HD software (v.6.5.0.2 at last count) reportedly "decrypts copy protection on all current Blu-ray movies." In conjunction with the celebration, the outfit is also reminding everyone that it will be moving to a subscription-based update program starting in the New Year, so you've got T-minus two days and counting to buy now and secure that 20% discount.[Thanks, Erie]
IXtreme 1.5 unlocks your non-Hitachi spinning Xbox 360
We love a good hacker vs. hardware battle, and while Microsoft has thus far done a reasonably good job of keeping miscreants from diddling with the details of the Xbox 360's firmware, applying patches and dropping ban hammers on those who don't comply, as of this morning it seems to be losing the arms race. Team Jungle has released version 1.5 of its IXtreme firmware, allowing for (relatively) easy cracking and unlocking of Xbox 360 consoles containing LiteOn, BenQ, and Samsung DVD drives (i.e. the majority of them). That leaves only Hitachi owners out in the cold, but if that's you don't fret: your version is just a few weeks away. Happy homebrewing![Thanks, Andrey M]
Sony Ericsson's XPERIA X1 developing cracks?
Sheesh, what's up with top tier handsets cracking this year? First the iPhone 3G, now SE's XPERIA X1? A curiously high amount of cracking complaints are starting to build around the web, possibly indicating that a quality issue could be somewhat widespread. We're hesitant to believe that this here quirk is even close to happening everywhere, but it is somewhat suspicious that HTC and SE have recently been rumored to be going their separate ways after this phone has faded from the limelight. At any rate, we've no choice but to poll our own audience here, so have you seen unwanted cracks appear in your X1? If so, hit the read link -- you definitely aren't alone in all of this.[Via WMPowerUser]
PSP 3000 finally, inevitably hacked by Datel's Lite Blue Tool
Hacking the PSP has long been a popular pastime, but the 3000 model has proven a tough nut to crack. Don't pop open the champagne just yet, though, Sony -- Datel has revealed a special battery peripheral called the Lite Blue Tool that boots the handheld console into service mode, where downgrades to earlier, cracked firmwares are possible. Of course, most older PSPs could be downgraded without any additional hardware and you only needed a battery like Pandora if you failed the idiot test and bricked your system, but be patient, pirates totally legit homebrew types -- Rome wasn't burnt in a day. Lite Blue is priced at an affordable $29.99, not bad for an interim solution if homebrew and "backups" are your thing.
ASUS shipping illegal keygen crack and confidential docs with some laptops
In a case repeating itself across ASUS discussion forums, some ASUS laptop owners are finding confidential and personal software along with an illegal keygen software hack bundled with their new rigs. According to readers of PC Pro and APC Magazine, a directory on the ASUS-branded Vista recovery DVD contains illegal software serial numbers, confidential Microsoft documents intended for PC manufacturers, and a variety of ASUS documents and source code. A reader in ASUS' forums claims to have found other bizarre files including someone's resume (pictured above). For its part, an ASUS spokesman has responded saying, "We will be investigating this at quite a high level." Well, then that's that. Read -- PC Pro Read -- APC Mag Read -- ASUS forum screengrab
Cloaking device could shield pacemakers from malicious signals
On a number of occasions, we've seen reports suggesting that pacemakers could be sent signals which could instruct them to do all sorts of unwanted things, including shut off completely. Thankfully, the University of Washington's Dr. Tamara Denning has heeded the warnings and created a possible solution. The so-called cloaking device would enable pacemakers to "resist any instructions that come from anyone other than the doctor," though it has yet to be put to the test. in the real world Now, making sure your doc has passed a sufficient amount of background checks is another matter entirely.[Via Switched][Image courtesy of SMH, thanks A.C.E.R.]
Our iPhone 3G cracked, too -- what gives, Apple?
Not to say we really doubted it before, but what little uncertainty we had as to the validity of claims that white iPhone 3Gs were cracking has now vanished, seeing how it just happened to us. This darned thing has been handled with kid gloves, hasn't gone through any temperature extremes, and has just generally lived the kind of luxurious, pampered life your average workhorse smartphone can only dream of, so we've got to chalk it up to poor design, poor materials, poor manufacturing, or a combination of the three. So, readers -- check the backs of your iPhone 3Gs recently?
