crack
Latest
Motorola designed a phone screen that repairs itself
Motorola doesn't just want to make phone screens that are shatter-resistant... if it has its way, what cracks that do show up could be fixed on the spot. It recently applied for a patent on a phone screen whose shape memory polymer heals damage when you subject it to rapid changes in heat. The phone itself could produce the heat (Motorola even envisions an app that tells the phone where to start repairs), but your body heat, a dock or a plug-in panel might also work.
'Rime' goes DRM-free after hackers crack the game in days
That didn't take long. Rime developer Tequila Works promised earlier this week that it would remove Denuvo, the anti-tampering/DRM system on the Windows version of Rime, if someone cracked it. Just five days later, and that's already happened and the makers have already released an update that's DRM-free. Interestingly, the developer tweeted saying its publisher was the one promising to make the game DRM-free if cracked. The tweet has since been deleted.
Some SIM cards can be hacked 'in about two minutes' with a pair of text messages
Every GSM phone needs a SIM card, and you'd think such a ubiquitous standard would be immune to any hijack attempts. Evidently not, as Karsten Nohl of Security Research Labs -- who found a hole in GSM call encryption several years ago -- has uncovered a flaw that allows some SIM cards to be hacked with only a couple of text messages. By cloaking an SMS so it appears to have come from a carrier, Nohl said that in around a quarter of cases, he receives an error message back containing the necessary info to work out the SIM's digital key. With that knowledge, another text can be sent that opens it up so one can listen in on calls, send messages, make mobile purchases and steal all manner of data. Apparently, this can all be done "in about two minutes, using a simple personal computer," but only affects SIMs running the older data encryption standard (DES). Cards with the newer Triple DES aren't affected; also, the other three quarters of SIMs with DES Nohl probed recognized his initial message as a fraud. There's no firm figure on how many SIMs are at risk, but Nohl estimates the number at up to 750 million. The GSM Association has been given some details of the exploit, which have been forwarded to carriers and SIM manufacturers that use DES. Nohl plans to spill the beans at the upcoming Black Hat meeting. If you're listening, fine folks at the NSA, tickets are still available.
Fan launches unofficial PC port of Vampire Smile, says it's not piracy
Russian developer Barabus really wanted to see Ska Studios' Xbox 360-exclusive game, The Dishwasher: Vampire Smile, on PC – so Barabus created a cracked version and uploaded it to the web. Barabus didn't contact Ska Studios and didn't think creator James Silva would lose any money from the unofficial PC port. On a game development forum, Barabus cited the following reasons the port was ethical (in English from Google Translate): "The view was expressed that, with respect to the authors is not very nice to publish the game on the PC. I have to argue that the part of the authors are not very nice to publish the game exclusively for the Xbox 360, making it impossible for PC gamers to play in such a great game," Barabus writes. "Piracy – yes, that is bad. On the other hand, we do not steal the game for the Xbox 360, we release it for the PC port. Given that developers ignore the PC platform, about any loss of profit for them is not out of the question. After all, if they wanted to earn money, then the game would be issued on all available platforms. If the game came out on PC officially, then this thread would not exist." Of course many players own both PCs and Xbox 360s, and an unofficial PC port could potentially lure away paying console customers and impact Ska Studios' profits. And Silva expressed interest in creating a PC version of Vampire Smile after finishing his next game, Charlie Murder. Silva responded to Barabus' port to Indie Statik. "I guess you could say my reaction is mixed," Silva said. "I'm flattered that there's this much interest in Vampire Smile on PC. I'm not mad about the crack itself; in fact, I'm actually pretty impressed. But I'm bewildered by the cracker's attempt to justify the morality of it. He assumes a lot about why Vampire Smile's not on PC yet, and he could have cleared up a lot of those assumptions by just emailing me. I get that piracy is a service problem, but that's a consequence, not a justification." Barabus added the following justification in the comments of that post: "The PC version has a lot of limitations. Cooperative gameplay is unavailable, network gameplay is unavailable, achievments is unavailable ... "Original Xbox 360 version for pirates is more attractive. I gave only the opportunity to play for those people who have no Xbox 360. This is not piracy. This is restoration of justice."
OS X Lion update accidentally outs user passwords in plain text, stumbles over FileVault
Are you an avid user of OS X's FileVault encryption and running a recently updated version of Lion? It may be time to consider changing your passwords. According to security researcher David Emry, users who used FileVault prior to upgrading to 10.7.3 may be able to find their password in a system-wide debug log file, stored in plain text outside of the encrypted area. This puts the password at risk of being read by other users or enterprising cyber criminals, Emry explains, and even opens the door for new flaw-specific malware. FileVault 2, on the other hand, seems to be unaffected by the bug. The community doesn't currently have a way to fight the flaw without disabling FileVault, so users rushing to change their password now may find it being logged as well. Obviously, we'll let you all know once we hear back from Apple regarding this matter.
Untethered jailbreak for new iPad shown on YouTube, not quite ready for download
Are we shocked to see an untethered iOS 5.1 jailbreak for the new iPad? Not so much. Are we surprised to see it arrive so quick? Hell, yes. The iPad 2's untethered jailbreak took an eternity, whereas this new tunnel seems to have been dug during one fleeting Friday night. The hacker to thank is i0n1c, aka Stefan Esser -- a man who moves so fast his YouTube clip reportedly had 28 likes before it had even finished uploading. Just leap that final fence, Stefan, by releasing your jailbreak to the public, and we shall re-christen you bi0n1c. (Unless you want to keep your current handle, which would also be fine.)[Thanks, Brad]
NASA simulates fly through of ginormous crack in Antarctic glacier, takes you for virtual ride
Swooping through the trenches of the Death Star likely ranks high on every geek's bucket list, but even an earthbound version won't really do the trick. Fortunately, the folks at NASA have rigged up a passable alternative -- flying through a massive 19-mile crack across Antarctica's Pine Island Glacier. The crack was discovered last October and measures 60 yards wide and 50 yards deep, certainly more than enough clearance to accommodate adventurous fliers. Using data gathered by NASA's Operation IceBridge science flight team, the agency generated an animated fly through that, well, mostly flew over the crack -- but we're sure that was a defensive maneuver. After all, you just never know when a TIE fighter flown by someone's father might sneak up from behind. See the icy flyover yourself after the break.
Passware claims FileVault 2 can be cracked in under an hour, sells you the software to prove it
Lunch hours may never feel safe again. That is, if you have a Mac running Lion / FileVault 2, like leaving your computer around, or have unscrupulous colleagues. Data recovery firm Passware claims its "Forensic" edition software can decrypt files protected by FileVault 2 in just 40 minutes -- whether it's "letmein" or "H4x0rl8t0rK1tt3h" you chose to stand in its way. Using live-memory analysis over firewire, the encryption key can be accessed from FileVault's partition, gifting the pilferer privy access to keychain files and login data -- and therefore pretty much everything else. If you want to try this out for yourself, conveniently, Passware will sell you the software ($995 for a single user license) without so much as a flash of a badge.
RIM puts BlackBerry Playbook on massive sale; Android Market shoehorned onto rooted units
Research in Motion may not have found itself in a coveted spot as 2011 ended, but if it's learned anything from HP, there's a surefire way to rid itself of remaining BlackBerry PlayBook inventory: sell 'em for a loss. After the unloved slate went on sale in its native land, Americans can now save up to $400 on a PlayBook through February 4th. RIM's official webstore is offering the 16GB, 32GB and 64GB model for $299, leaving us to wonder who would ever choose the smaller two if all three remain in stock. In related news, those who take the company up on the offer can now gain access to the Android Market with a few choice moves. The fine folks over at CrackBerry have detailed the process, which requires a rooted PlayBook, WinSCP, the latest version of Cyanogen Google apps and a fair amount of patience. Naturally, not all Android apps will actually work on the device, but it's a lovely hack for a sure-to-be-sluggish week in your workshop. Hit the links below to learn more.
ultrasn0w bumped to version 1.2.5, now unlocking even more iOS 5.0.1 devices
Given that you're out on Christmas break and all, isn't it about time you finally tried out that whole "unlocking" thing you've been hearing about? A new build of ultrasn0w just hit the Cydia app store, with v1.2.5 adding more support for iOS 5.0.1. Of note, novice jailbreakers may want to reach out to more experienced pals before embarking, as you'll need a a compatible baseband in order for the unlock to work. The iPhone 3GS (running iOS 5.0.1.) is supported with the following basements: 04.26.08 – 05.11.07 – 05.12.01 – 05.13.04 – 06.15.00. The iPhone 4 is supported if your baseband checks in as 01.59.00. If you're looking to upgrade from a dustier firmware, make sure you preserve your baseband before unlocking. Hit the source link for a few tips, and remember: friends don't let friends jailbreak before completing a backup.
iOS 5 beta 5 finally gets its jailbreak, rides home in a gangster limo
Numero cinque took a lot longer to crack than the previous betas. Are the Dev-Team guys beginning to struggle, or are they just out enjoying the sunshine? Either way, it's still tethered-only and it won't work on an iPad 2, but it's a heck of a lot better than the exercise yard. Jailbreak app developers can get busy with redsn0w 0.9.8b5 via the source link. [Thanks, Jeff and Kyle]
ShairPort emulator cracks open the door for more unofficial AirPlay streaming options
There's already a few unofficial AirPlay applications out there, but looks like developer James Laird has now gotten right to the heart of the matter and enabled a whole host of new streaming possibilities. Here's apparently managed to crack the private key used by Apple in the AirPort Express (literally by ripping one open and dumping the ROM), and he's used that to build an emulator dubbed "ShairPort," which will let you stream music from iTunes to any third-party software -- or hardware, for that matter, if someone decided to go as far as to build a device that takes advantage of the private key. Have something in mind? You can download the emulator at the source link below.
Sony releases statement on PS3 hacking, surprisingly comes out against it
In the wake of recent developments in Sony's war on Geohot, the company has released an "Official Statement Regarding PS3 Circumvention Devices and Pirated Software," which reads, in part: Consumers using circumvention devices or running unauthorized or pirated software will have access to the PlayStation Network and access to Qriocity services through PlayStation 3 system terminated permanently. To avoid this, consumers must immediately cease use and remove all circumvention devices and delete all unauthorized or pirated software from their PlayStation 3 systems. In other words: get caught with custom firmware, find yourself banished from the PlayStation Network forever. Seems rather reasonable. More reasonable than, say, filing a motion in court for the usernames and IP addresses of everyone who posted comments on Geohot's YouTube video. Read the entire statement at the source link.
Verizon iPhone 4 (iOS 4.2.6) jailbreak now available for Mac and Windows, courtesy of greenpois0n
Aw, suki suki now! Merely hours after the first Verizon iPhone 4 units began to land in the hands of mere mortals, out pops two download links that you'll most certainly want to give a little consideration to. Chronic Dev Team has just pushed out greenpois0n RC5.4 for Mac and Windows machines, enabling those with iOS 4.2.6 devices to uncage their phone and mate it with Cydia. Hit the links below to get started (including a tutorial over at Quickpwn), but make sure you consider all possible outcomes before doing the deed. Will you life be forever altered for the worse? Will your Verizon iPhone suddenly have less coverage than your old AT&T iPhone? Will you find the always-elusive "true happiness?" Let us know how fate treats you in comments below. [Thanks to everyone who sent this in]
PS3 firmware 3.56 hacked in less than a day, Sony's lawyers look confused (update)
Sony's taken some strong steps against PS3 cracking in the past week -- not only has it taken to the courts and won a temporary restraining order against Geohot and fail0verflow for cracking the console, but it also released firmware 3.56, which locked things down again. Unfortunately, that restraining order doesn't mean anyone else has to stop a-crackin', and wouldn't you know it: 3.56 was cracked open in less than a day by KaKaRoToKS, who was behind one of the first 3.55 custom firmwares. Now that the 3.56 signing keys are out, we'd guess updated custom firmware is soon to come -- and we'd bet Sony's lawsuit will just inspire an entirely new wave of people to jailbreak once those hit the scene. Way to put that genie back in the bottle, Sony. Update: We're hearing that new custom firmware isn't on the table quite yet, because Sony changed most of the locks, and is reportedly actually storing the all-important ECDSA private key with random-number cryptography this time around. Be warned: if you upgrade to 3.56, there's no easy way back down. In related news, Github complied with a DMCA takedown notice to remove KaKaRoToKS's repositories, so you'll have to head on over to Gitorious (at our more coverage link) to get at the fail0verflow tools. [Thanks, Tomi R]
Galaxy Tab gets 1.2GHz overclock, very scary warning
It's here, what looks to be the world's first attempt at overclocking a Samsung Galaxy Tab. User Bauxite at the always happening xda-developers forums has posted the way to boosting Samsung's hunk of burning Android up to 1.2GHz -- along with some seriously stern warnings: THIS KERNEL MAY NOT WORK ON YOUR DEVICE, MIGHT DESTROY YOUR DEVICE, MIGHT PUNCH YOUR CHILDREN, I AM NOT RESPONSIBLE FOR ANY DAMAGE CAUSED BY THIS KERNEL, USE AT YOUR OWN RISK Initial user reports are generally positive but, given the risk and the complexity here we think we'll be staying at the stock 1GHz speed. For now, anyway. [Thanks, Alain]
Researchers eavesdrop on encrypted GSM call: all you need is a $15 phone and 180 seconds
It's hardly a fresh idea -- researchers have claimed that GSM calls could be cracked and listened in on for years. But there's a difference between being able to do something with a $50,000 machine and a warrant, and being able to do the same thing with a few $15 Motorola phones, a laptop, open source software and 180 seconds of spare time. Security Research Labs researcher Karsten Nohl and OsmocomBB project programmer Sylvain Munaut recently spoke about a new GSM hack at the Chaos Communication Conference in Berlin, and they were able to walk the audience through the eavesdropping process in a matter of minutes. According to them, it's not terribly difficult to use a $15 handset to "sniff out" location data used to correctly route calls and texts, and once you've nailed that down, you could use modified firmware to feed raw data into a laptop for decryption. Using a 2TB table of precomputed encryption keys, a cracking program was able to break in within 20 seconds -- after that, you're just moments away from recording a live GSM call between two phones. Of course, speeches like these are made to encourage security officials to beef up the layers between you and ill-willed individuals, but it's hard to say what (if anything) will change. For now, we'd recommend just flying to each and every person you'd like to speak with. Unless you live in the Greater New York area -- you're probably better off risking a hacked conversation than heading out to LGA / JFK / EWR.
ElcomSoft turns your laptop into a one-touch WiFi cracking system
It's been a few years since we checked in with Elcomsoft's Wireless Security Auditor WiFi cracking software. As you'd expect, things have become easier, much easier. Elcomsoft now has an all-in-one solution that will locate wireless networks, intercept data packets, and crack WAP/WPA2 PSK passwords from any modern laptop with a discrete ATI AMD or NVIDIA graphics card. Here's the quote IT nerds will surely we love: Today, ElcomSoft is integrating a wireless sniffer into Elcomsoft Wireless Security Auditor. The integrated sniffer turns Elcomsoft Wireless Security Auditor into a one-button, all-in-one solution ready to be used by corporate security officers without specific experience in information security. Call us crazy, but if you're a C-level security officer with no specific information security experience then maybe you shouldn't be sniffing people's data packets. Then again, we're sure ElcomSoft will happily sell their $1,199 pro software or $399 standard edition to any hacker willing to pay, white hat or not.
iOS 4.1 jailbreak on the way after bootrom exploit discovery
So let's see, how long has iOS 4.1 been out in the open for public consumption? We make it less than 24 hours, yet already some earnest jail busters have managed to liberate it from Apple's control freak clutches. It's still a fair distance away from an easily executable jailbreak, but it's looking like it'll work on iPhone 4, the latest-gen iPod touch, and the iPad, covering all the freshest bases of Apple hardware. Now it's just a matter of waiting it out.
HTC EVO 4G suffering new calendar bug, cracked shells, broken dreams?
It wouldn't be the first time the EVO's been dinged for a manufacturing defect, but it seems that at least a few owners are reporting cracks near the power button. Fortunately, these cracks seem to be purely cosmetic without any effect on feel or any real danger of the case falling apart -- and seeing how other high-profile devices have suffered similar fates, we can certainly buy that there are high-stress points in the phone's case where this is prone to happen. We'll wait a moment to continue the story while you pull your EVO out of your pocket and check yours. Alright, now that we have you back, the second issue is purely software -- and arguably quite a bit more troublesome than a tiny, harmless crack. Apparently, the recent Android 2.2 upgrade has introduced a bug whereby event descriptions are being overwritten by their locations when you open them, which basically means this is a legit data loss problem. No ETA yet on a fix, but considering that it's been filed and verified in Android's official tracking system, we're hopeful it's going to get patched up sooner rather than later. [Thanks, Lee H. and Andrew]
