New PS4 5.0x Exploit Could Allow Attackers To Access The Console In Rest Mode

Sony’s PS4 has been the target of hackers for a number of years now, and while some of them have been working to open the hardware up, or jailbreak it, others are trying to access them for more malicious reasons.

One new exploit, announced during the Recon Brussels hacking conference, appears to give those people a leg-up in gaining access to a PS4 while it is in Rest Mode, a low power state that allows the PS4 to stay powered on but with minimal power usage.

The exploit was shown off by a hacker by the name of Volodymyr Pikhur who apparently has known about it for two years. He has chosen to share it now because Sony does not offer any kind of bug bounty, meaning he cannot be paid for sharing it. Of course, he could have just told Sony about the exploit for free, but instead he chose to share it with the world, including video of the exploit in action and slides detailing its execution.

Experts believe that there was enough information shared to allow attackers to take advantage of Pikhur’s work, and Wololo reached out to gather more information.

  • According to the hacker, the sys_kldload exploit still exists in firmware 5.00, potentially more recent firmwares as well
  • The important point of the video above is that the hack persists after boot, demonstrating what is probably the very first custom firmware on the PS4
  • Sony changed their keys in 5.05, but apparently not the signing process.
  • The kernel bootloader contains the keys for Rest Mode kernel, which is why it was interesting to get access to it.

It is hoped that Sony will issue a firmware patch to plug the security holes on display here, although it is obviously unknown when that will be forthcoming.

(Source: Volodymyr Pikhur [Twitter])

You may also like to check out:

  • iOS 11.3 Public Beta 2 Download / OTA Update Released
  • Pokemon Go 1.61.1 IPA And 0.91.1 APK Hack Available To Download Now
  • Download: iOS 11.3 Beta 2 IPSW, OTA Released For Testing
  • iOS 11.2.5 Jailbreak: Adam Donenfeld’s iOS 11.2.2 Vulnerability Could Result In A New Liberation Tool
  • Download iOS 11.2.5 Final IPSW Links, OTA Update For Your iPhone, iPad, iPod touch
  • Downgrade iOS 11.2.5 To iOS 11.2.2 For Potential Future Jailbreak, Here’s How
  • Jailbreak iOS 11.2.5 / 11.2.2 / 11.2.1 On iPhone And iPad [Status Update]
  • Jailbreak iOS 11 / 11.1.2 On iPhone X, 8, 7, iPad Using LiberiOS [Updated]

You can follow on Twitter, add us to your circle on Google+ or like our Facebook page to keep yourself updated on all the latest from Apple and the Web.