Xbox 360 Firmware Almost Hacked

TheSpecialist, a Xbox hacker with some street cred, hinted in a message that a Xbox 360 firmware hack is almost complete. After being asked for more information, TheSpecialist responded:

Firmware. I doubt you’ll see some kind of OTHER hack soon, that lets you boot unsigned code for example. MS did a very good job on the 360 itself this time. However, they made a big mistake by forgetting about the firmware. They even didn’t remove the debug routines from the FW, quite amazing … The 360 has a little bit more advanced protection in its FW than the original xbox, but still, they did some stupid things (like forgetting about the debug routines, that were very helpful to us, hehe, and most importantly: not signing the firmware). I’m betting they’ll develop the MPU in the drive from scratch for their next gen consoles and sign the code in the FW

It’s no secret that Microsoft, like any major corporation these days, monitors developments in the hacking/mod scene to engineer countermeasures to prevent circumvention of their devices. After seeing the methods used in hacking the original Xbox, Microsoft wanted to be sure their new console would be immune from more causal attempts at modchip creation. They’ve made sure to retain the possbility to push remote updates via Xbox Live! to be able to detect non-standard components running on the machine. Yet, forgetting to sign the firmware and leaving debugging routines seems like gross oversight on Microsoft’s part. According to the postings, any method Microsoft uses to secure the Xbox 360’s will be easily circumvented again due to lax firmware security.

Should Microsoft be worried? For now the answer is no for two reasons.

1. The current hack is being done with a hardware that average consumers don’t have access to. However, according to TheSpecialist says it is possible:
   

   Currently there’s no method to do it via software, so you’ll need a hardware programmer. However, it’s possible to do it via software, it only has to be researched

2. TheSpecialist won’t be releasing the code any time soon as start in this message:
   

   … I highly doubt that the team will release a hacked ‘ready to go’ firmware … I think a lot of hackers (including me) are reluctant to do this. The threat from MS and its lawyers is real. Even though it might be legal in some countries, if you visit the US they can arrest you there (like they arrested that Russian guy when he visited the US) … Well, maybe a text document with bytes differing from original and hacked FW is possible => it’s not a ‘device’ to circumvent copy protection’ and it will only serve eductional purposes of course. That way only the person that is going to use that information to create such a ‘device’ (software) is the one that is doing something illegal and not the hacker I suppose … But again, I’m not a lawyer and it is a VERY slippery slope we’re on here …

Does this mean that we won’t be seeing something like this out in the wild? With the modchip industry waiting to capitalize on this generation of consoles, there is a financial incentive to do the research into creating both hacked firmware and a solution to do software updates to counter Microsoft’s attempts to lock out modified machines. Although TheSpecialist and his team may not release the actual code, he has confirmed the existence of multiple teams working on this and a hack could be out in the next few weeks.

Unfortunately, I wouldn’t suggest getting too excited about running Linux or custom media center software just yet. Hacking the firmware is the first step in a long process to allow homebrew code running on the Xbox 360. At least the first milestone in achieving that goal has almost been reached.

Update (3.18.2006): It’s done. A video is available showing the Xbox loading a backup disc. As stated before, the firmware won’t be released by this particular team.

Comments

• Recently Written

  • How to Get Facebook’s New Layout
  • Time for a New Direction?
  • Vista Error: “Logitech LVPrcSrv Module. has stopped working” Fix
  • Live Messenger Error 2771 After Installing Windows XP Service Pack 3 (SP3)
  • “Bluetooth Device Not Found” After Windows XP Service Pack 3 (SP3) Install
  • Windows Updaters: Where Is the Unified API?
  • Windows XP SP3 Leaked onto Bittorrent and Usenet
  • Corsair Flash Voyager: Lifetime Warranty
  • Upgrading to WordPress 2.5… Slowly!
  • Safari-gate Continued: Disabling Apple’s Second Update for Windows

• Categories

  • Cars
  • General
  • How-To
  • Tech/Gadgets

• Archives

  • July 2008
  • May 2008
  • April 2008
  • March 2008
  • January 2008
  • December 2007
  • July 2007
  • December 2006
  • August 2006
  • June 2006
  • May 2006
  • April 2006
  • March 2006
  • February 2006
  • January 2006
  • September 2005
  • August 2005
  • July 2005
  • June 2005
  • May 2005
  • April 2005
  • March 2005
  • February 2005

• Admin

  • Log in
  • WordPress
  • XHTML

• 
  

• Google Ads

• Links

  

• Blogroll

All trademarks and copyrights on this page are owned by their respective owners. Comments are owned by the Poster. The rest: Copyright © 2004-2008 Hisham’s Blog, All rights reserved. All materials appearing on blog.hishamrana.com may not be reproduced or stored in a retrieval system without prior written permission of the publisher and in no case for profit. Disclaimer: The views expressed on blog.hishamrana.com are the sole responsibility of the authors whose articles are posted and do not necessarily reflect the views of the webmaster. The views reflected in the comments are those of the Poster and do not necessarily reflect the views of the webmaster.