hacking
Latest
Apple modifies Public Source License to thwart hackers
The InsanelyMac Forum has a post concerning an apparent modification Apple made to their Public Source License, the license that guards the open source portions of Mac OS X such as its Unix kernel, called Darwin. The changes the InsanelyMac Forum cite seem to have been made to set up another roadblock for those who are trying to hack Mac OS X to work on non-Apple hardware, though Apple's site for the license say the latest version is dated August of 2003. Semantics aside, the changes quoted in the forum reflect the application of another fine-toothed comb to what users are not allowed to do with the source they download from Apple's site. Too bad; with Vista receiving mixed reviews, I'm sure Michael Dell would still be interested in offering customers a better choice.
Xbox 360 backup hack leads to surging dual-layer DVD+/-R sales
Although a lot has been said regarding the hackability of the Xbox 360, there's always a way if there's a will. Sure enough, the clever, engineering minds of the world finally figured out how to flash its firmware, create backup discs, and subsequently destroy any remaining warranty. While Microsoft certainly doesn't appear to be the beneficiary in this here scenario, someone's always there to catch the spoils of such widespread hackeration, and this time it's the dual-layer DVD manufacturers. As the hack has seemingly become quite the rage, companies such as CMC Magnetics and Ritek are seeing demand for their "dual-layer DVD±R discs" creep upward; coming off numerous months of sluggish sales, the outfits are pointing the finger at widespread availability of the Xbox 360 hack to explain the sudden resurgence in popularity. While "global DVD±R DL disc shipments are expected to reach 100 million in 2006," analysts are now expecting that number to "double" in 2007, so hopefully the cost of backin' it up will continue to become more affordable than ever (until Microsoft rolls out another fix, that is).
FIC's Linux-based FIC-GTA001 GSM smartphone encourages hacking
Hot on the heels of DrewTech's Linux-powered DashDAQ is FIC's own piece of Linux-based hawtness, the FIC-GTA001 mobile. While the company is already familiar in the world of CDMA, this marks the firm's first endeavor into the realm of GSM smartphones. Sporting a 2.8-inch 640 x 480 resolution touchscreen with "multi-touch gesture recognition," GPS capabilities, dedicated "emergency paging button," and an "iPod-quality MP3 player," the svelte cellphone is primed for homebrew apps thanks to the inclusion of the SDK right in the box. FIC is hoping that adopters will participate in developer communities to craft new and improved applications for the limitless device, and even hopes to enable wireless uploads / downloads of completed files. The device is powered by a Samsung S3C2410 ARM9-based processor, 128MB of internal RAM, and 64MB of flash memory, but unfortunately there's no scheduled release date or expected price for the open-source (and delightfully styled) handset.
MS banning firmware modders?
Xboxic has a detailed post on Microsoft's response to Xbox 360 firmware modders that I won't attempt to explain in full. Supposedly, MS is now banning users with the easily detected hack. No surprise there, unless you don't happen to have hacked firmware and get the axe anyway.
Ex-delegate gets Diebold voting code in mail
With all the recent blunders and whistleblower interviews about the Diebold electronic voting fiasco, it would have been easy to believe that it couldn't get any worse for Diebold Systems. That's probably what Cheryl C. Kagan, an ex-Democratic delegate and an outspoken critic of Maryland's election chief, thought before she received a parcel containing the code that ran Maryland's electronic voting machines in the 2004 election, along with a note calling for her to "alert the media." Although Diebold Election Systems claims that the code is old and does not infringe the security of the current up-to-date system, the fact that it was sent at all exposes a fundamental security flaw in Diebold System's supposed "glitch-free" setup. The only viable solution to all this -- which would make voters happy and give Diebold Systems *some* credibility -- is if the code is released in an open source form. Even though we'd like to believe that the current version of Diebold's voting code (4.6) is more secure that the leaked code (4.3.15c), the litany of security failures on Diebold's part gives us little reason to trust them.
The easiest homebrew solution yet
We've reported on the surprisingly well-established homebrew community on the DS; there's a whole wealth of wonderful applications you can coerce your DS into performing. To most, however, the prospect of "hacking" the DS is "scary", and despite some of the easier methods out there, it still seemed a little much.Well, we no longer think it could get any easier. The newest device to come out of haX0r-land, the sillily named DS-Xtreme, is nothing more than a DS cartridge. It works as a simple mass-storage device ... simply move the applications or files to the cartridge using a USB connection, and poof, instant homebrew. It comes with a built in MP3-playback app, and it has two bitchin' LEDs for good measure (check out the embedded videos after the jump). The downside? It only contains 512 MB of memory, and it can't run anything built for the Game Boy Advance. Still, for the fence-sitters out there, this might be enough to push you over the edge. Check it out.[Sillily is so a word.][Thanks, Gordon!]
Divineo 'evolves' PSP face plates
If Divineo's chrome PSP faceplate wasn't your bag, the Talismoon Evolve series might be.According to Divineo, everything needed to create a new-look PSP is included in a single package, consisting of the faceplate color of your choice, an illustrated diagram, hardened steel jeweler's screwdriver, a dazzling set of diamond series buttons as well as a finely made polishing cloth to preserve the appearance of your PSP for years to come. If you want a custom look for your PSP but can't afford one of Sony's Signature PSPs, this may be an excellent way to go. And for only $15, you won't be out too much if you don't end up liking it. However, keep in mind that removing your face plate will void your PSP's warranty.[Via DCEmu]
Sweet custom case with Master Chief
TeamXtender, the bad boys of 360 case design, are at it again. This time they have released a new design called Chameleon, which (surprise) changes colors using LEDs. Perhaps more interesting is their new custom design featuring the Master Chief (shown at right). Presumably, TeamXtender will offer cases with different images in the future. See more images after the break.
Hackers, start your engines: all Vista versions on one DVD
You probably remember the old hack that lets you change a couple of digits in a registry key in order to burn a disc capable of installing Windows XP Pro when all you paid for was the cheaper Home edition. Well it looks like Microsoft is once again looking to save a few bucks at the expense of minimizing piracy, as the company has reportedly confirmed to IDG News Service that every version of Vista -- from Home Basic to Ultimate -- will ship on a single DVD when the OS is finally released. Besides enabling Redmond to cut costs, there are even more self-serving interests at play in this decision: by giving consumers an easy way to upgrade, Microsoft is hoping that more people will drool over the extra features in the pricier packages and decide to throw down the cash for a new registration key. Of course the downside to this strategy is that somehow, somewhere, some clever hacker is going to figure out a way to get Ultimate onto his/her machine without the upgrade fee (after disabling WGA of course), and people the world over with less morals than ourselves or our readers will gleefully follow suit. Anyway, we could never in good conscience recommend that you partake in such illegal activities, but as per usual, you can be sure that we'll be reporting on this hack the minute it hits our tip jar.
Automated penetration testing on the sly
Security minded Immunity corp is developing a wireless handheld device dubbed Silica, meant to help security professionals conduct mobile penetration, or pen, tests on the sly. The device is fitted with Bluetooth and WiFi and comes pre-loaded with hundreds of automated exploits to simulate a malicious attack. So instead of conspicuously setting up shop with a laptop and cantenna, the (hopefully) white hat hacker just slips the Silica into a pocket to scan every WiFi and Bluetooth device while strolling about the office, campus, or city streets. The device will then download "items of interest" from penetrated systems before connecting 'em to an external listening post -- good times! Immunity is currently beta testing Silica with hopes of launching the device for right around $3,000 in October... and then shortly thereafter on eBay. Let the warpenning begin!
59,000 More Accounts Closed
In their continued effort to rid Azeroth of hackers and gold farmers, Eyonix announced this evening that 59,000 accounts were closed during the month of June for terms of use violations. Have you seen anyone behaving suspiciously on your server? An account that's being controlled by a bot isn't too difficult to spot if you spend a bit of time paying attention - and Blizzard investigates all reports. So if you suspect such behavior, report it to a GM, and help the community be rid of the annoyance of hackers and bot farmers.
How-to overclock your Nintendo DS
If you've gotten just a little too good at your Nintendo DS games and are looking for more of a challenge -- and also looking to void your warranty -- now there's a way to hack your console for making everything run almost twice as fast. A Japanese modder has just posted step-by-step directions (in Japanese, unfortunately) for re-wiring a DS Lite to perform at a claimed 1.7x speed, complete with a toggle switch in case you decide that turbo mode isn't appropriate for all occasions. It looks like you have to be pretty handy with a soldering iron to tackle this particular project, so if you've got the skillz and about four hours to waste on tinkering around with your DS's sensitive circuitry, then accelerated performance -- and funny-sounding audio -- will be your reward.[Via Maxconsole]
Hacking the Staples "Easy Button"
Further proving that nothing in life is truly easy, or at least venting some pent-up frustrations at that certain office supply store, Al Cohen has turned the once cute "Easy Button" to the dark side. Although it showcases a pessimistic demeanor at first glance, the evil button is blackest at heart; by replacing the innards with a recording circuit and a 1/8-inch line-in jack, you can channel your angst into the device and unleash your rage with a simple smack. If hard times catch up to you while away from your mic, you can record directly into the button for instant gratification. Al was kind enough to provide step-by-step instructions of how to create your own in hopes of dispelling the myth that business is easy, and if you can't decide if it's worthwhile, take a peek at his in action. [Via Hack A Day]
Skype's been cracked?
Earlier this week, a gentleman named Charlie Paglee received a Skype call from a colleague in China -- nothing out of the ordinary, except for the fact that this particular call was coming from an unofficial, homemade Skype client. Paglee, who cofounded the VoIP startup Vozin Communications, claims that the Chinese friend he spoke with is part of a team that has successfully reverse-engineered the Skype protocol, possibly paving the way for a series of third-party clients that would delight consumers but provide no small amount of frustration to Skype-owner eBay. Although this unlicensed client is currently only able to perform peer-to-peer calling -- presence, instant messaging, and super node features have not yet been implemented -- it seems to be only a matter of time before the engineers have a more robust demo available for public download (they're supposedly shooting for an August release). And since all of this work is going on in China, eBay has no legal means of shutting down the client's development, but even if they did, it's probably already too late -- now that the cat is out of the bag, it's pretty clear that an open-source Skype client is inevitable, and that eBay's future business plans will have to take that reality into account.[Via GigaOm]
HP dons white hat to hack customers' servers
Usually the term "hacking" has some rather negative connotations, so it almost seems counterintuitive to pay someone good money for breaking into your system, but that's exactly what HP is offering to do for its corporate customers with a new service called HP Active Countermeasures, or HPAC. As you'd imagine, HP's hackers won't do anything malicious once they break into a client's server -- propagating a worm, for instance, would seem to be bad for business -- but they will use a combination of buffer, heap, and stack overflows to exploit a system in much the same way that black hatters cause Internet terror on a daily basis. Specifically, the company will employ one of its own servers to launch attacks using eight to ten scanning clients for every 250,000 devices that are part of the program, and offer customers a temporary patch until they're able to hire a dedicated security firm for shoring up any vulnerabilities. Pricing is promised to be "aggressive," with firms using less than 20,000 IP addresses expected to pay only a few dollars per user per year for the privilege of learning how shoddy their security really is.[Via The Inquirer]
PSP firmware versions 2.5 and 2.6 now downgradeable
So if you made the "mistake" of upgrading your PSP to firmware version 2.5 or 2.6 just to find out that your precious homebrew would no longer load, it seems you now have a questionably-legal way to downgrade back to version 1.5 and all the emulation fun that goes along with it. Several forums dedicated to Sony's portable console are reporting that hackers using the handles Dark_Alex and Hitchhikr have succeeded in creating a workaround that exploits files from the 1.5 updater to overwrite the current firmware, although owners of so-called "TA-082" PSPs are warned not to attempt the procedure unless they fancy a bricked device. Furthermore, since you're required to either download the necessary 1.5 swag or get it from a friend, you're probably breaking some anti-piracy laws here, so of course we can't put our stamp of approval on this hack. That's all for now, but the battle between Sony and the homebrew community is far from over, so keep your eyes peeled for the next installment in this exciting saga.
Project Hacker Kakusei; Uplink for your DS
An intriguing television commercial for a Japanese game called Project Hacker: Kakusei, a title for the DS that closely resembles the innovative hacking title Uplink, has popped up on the internets. The game will place you in the role of Satoru, a detective with an organization called the GIS, for which you will have to face hacking-themed puzzles like password cracking. The commercial demonstrates effective use of the stylus combined with Uplink-style hacking, along with elements similar to Phoenix Wright's detective style and 2D anime artwork; hopefully the developers plan to emulate Ace Attorney's over-the-top dialog and light-hearted premise too.According to IGN's page on Project Hacker, the title was announced in October '05 when it was originally called Detect Hacker. It's being produced by Nintendo and developed by Red Entertainment and is due for release in Japan before the year is out. I couldn't find anything online about an English localization, so unfortunately we must assume that this is going to remain exclusive to Japan for now. With a little luck (and some pressure from you guys--for a start, the game's wiki page could do with some work), that will change.
Hunters Hax
While the DS homebrew and hacking community doesn't quite hold a candle to the PSP's, there are still many a soul who live to exploit Nintendo's wonderful hardware. While many have managed to perform "good" by enabling things such as emulators and voice chat, there are those who would do malicious evil. This is one of those cases. A hacker named Legacy has released an application that grants players in Metroid Prime: Hunters access to several cheats, including infinite energy, infinite ammo, and levitation. Worst of all, these capabilities are also accessible in official Wi-Fi matches; before long, you may see a few of these cheats yourself. Tsk tsk, Legacy. Got rocked a few times too many?
Griefing and self-governance in online games
The Guardian has produced an excellent column that addresses the problem of "griefers", people that abuse, team-kill and cheat other players of online games, particularly MMOs. Griefing has always been a problem where real players compete against their peers, although with massively multiplayer online games the problem has become much more serious. Earning a battleship in Eve Online or crafting a special item in World of Warcraft can take weeks if not months of game time. On top of that, the recent trend for people to sell items on auction sites like eBay has meant that rare online items have a monetary value.The article cites several high profile situations where griefers have bent moral codes with the Guiding Hand Social Club's ruination of Ubiqua Seraph in Eve Online and the funeral crash in WoW being the two main examples. Solutions that companies have come up with to limit these types of situations from happening are also looked at with the Xbox Live points system and strong community measures (like guilds and friend lists) being top on the list of letting players self-govern the problem. Effective community governance is essential if companies want to keep players inside the game and so that the owners don't have to resort to more drastic measures, like Blizzard does with its periodic account banning binges.Update: fixed a couple of minor grammatical errors.
How-to create backup copies of your Xbox 360 games
Now that you've flashed your Xbox 360's firmware to enable the playing of backup discs, you probably want to start actually backing up those expensive games you bought in case they get scratched or perhaps even melted by your toasty 360. And luckily for you, CleverMod has posted just the step-by-step instructions you need for ripping your games and then burning the images onto dual-layer DVDs -- but keep in mind, you're voiding about a million warranties with all of this flashing and ripping and such. Basically, CleverMod's method involves disassembling a DVD drive so that you can switch discs without hitting the eject button, and then installing a program called WxRipper that finds a so-called "magic number" from any regular 8+GB dual-layer DVD. The program then uses that data to unlock a substituted 360 disc and dump a RAW copy onto your hard drive, which can be burned onto a blank disc and presumably played using the Commodore4Eva hack on Toshiba-Samsung drive-sporting 360s. And just to be super clear, if you don't own a copy of the game you're ripping, then you're not allowed to do this (i.e. Blockbuster, GameFly games are off-limits).[Via digg]
