Printed from http://www.electronista.com

PS3 3.56 may have brought effective Sony rootkit

updated 04:30 pm EST, Tue February 1, 2011

New PS3 firmware may let Sony run remote code

Sony's new 3.56 firmware for the PS3 may have introduced a potentially dangerous avenue for Sony and others to control the system from a distance. Owners have said the update reportedly now supports loading remote code the moment it logs into the PlayStation Network, similar to a rootkit. The approach found on NeoGAF's forums could let Sony alter code and introduce new checks without having to roll out a completely new firmware upgrade.

The new code execution routine might not even be erasable for any console getting online. Since Sony's servers wait for a reply before going ahead, removing the code that would provide the response could make it difficult to connect without either having the official response or somehow forging the traffic, which isn't known to be reliable.

Sony's decision might have long-term consequences and could create problems for legitimate users. Malware writers or other hostile code writers could see this as an identifiable point of attack and could, if they properly fake a legitimate source, inject their own code to compromise the PS3.

The steps came after unofficial teams discovered a possibly permanent jailbreak and Sony began taking drastic actions in an attempt to curb piracy but also fair use. It has gone so far as to get a restraining order against Geohot, one of the discoverers, even though he took extra steps to ensure his technique couldn't be easily used for piracy.

Sony has had a troubled history with imposing extra security measures and infamously placed an actual rootkit on 52 music CD titles. The approach exposed Windows users to possible hacks and led to class action lawsuits as well as a complete reversal of Sony's practices.



By Electronista Staff
Post tools:

TAGS :

toggle

Comments

Login Here

Not a member of the MacNN forums? Register now for free.

toggle

Network Headlines

toggle

Most Popular

Sponsor

Recent Reviews

Asus Chromebook C300

When Chromebooks hit the market back in 2011, consumers didn't know what to do with them. The low-cost laptops, powered by Google's Ch ...

Plantronics BackBeat Pro Bluetooth headphones

Looking for a pair of headphones that can do everything a user requires is a task that can take some study. Trying to decide on in-ear ...

Lemur BlueDriver

"Oh no, the check engine light is on…again! What one of the hundreds of reasons could it be this time? Probably going to cost a fort ...

Sponsor

toggle

Most Commented

 
toggle

Popular News