Xbox360: Hacked!

[autopilot]

http://www.maxconsole.net/?mode=news&newsid=6367

It had to happen at some point i guess.

[furkan]

Yep it was only a matter of time, nothing is ever hack proof

[sawyen]

What can I say? Its a Microsoft product.. What can I say?

[TheAnimus]

What can I say? Its a Microsoft product.. What can I say?

not quite sure what u mean here salor, but the idea of the 'proof' (which dosen't imo look that convinsing) is to let you play copy'd games. That isn't something i support. However letting people make their own games, without draconian licensing, that would be good, but wouldn't make money so the console platform always stops it

[Tomahawk]

Yeah read up on this yesterday, was interesting.. But I wonder whether this will take off.. as the 'tutorial' on howto isn't being released.. Guess people will follow though.

[ctid]

Yeah read up on this yesterday, was interesting.. But I wonder whether this will take off.. as the 'tutorial' on howto isn't being released.. Guess people will follow though.

The tutorial isnt being released, but all the security info has been. If you're smart enough, you can do this yourself. I've looked through it and it doesnt seem too difficult, but I think this would be a bad thing if it was released to the masses. We dont need Xbox360 to die like Dreamcast did.

[herulach]

The tutorial isnt being released, but all the security info has been. If you're smart enough, you can do this yourself. I've looked through it and it doesnt seem too difficult, but I think this would be a bad thing if it was released to the masses. We dont need Xbox360 to die like Dreamcast did.

HAving read what it actually entails a tutorial would be a bit moot anyway, as the kind of skill level required to dump the remove DVD drive rom, then patch it, then reinstall it isnt really within everyones grasp, and cant (as far as i know) be done with standard software either, especially as there isnt a driver for using the drive in a pc.

[smtkr]

I'm less concerned about hacking consoles than I am about someone hacking the new high definition DVD standards. I can emulate games and run software on my computer. The only other thing hacking a console is good for is playing copied games, which I don't care about.

[herulach]

I'm less concerned about hacking consoles than I am about someone hacking the new high definition DVD standards. I can emulate games and run software on my computer. The only other thing hacking a console is good for is playing copied games, which I don't care about.

Tell that to all the people who use theirs as a media center.

Or to go all /. on you, imagine a beowulf cluster of X360s

[Skinleech]

Here's some mroe info:

The hack is a modified firmware of the Xbox 360 Hitachi-LG GDR-3120L DVD-ROM drive (the security in the Toshiba/Samsung TS-H943 is said to be similar, so it's probably also possible with this drive ... but it does require it's own hacked firmware of course).
As you (should) know, all Xbox 360 executables (XEX files) are signed by Microsoft (with a private key only MS has). This means that if you try to change anything to the XEX file, the signature will be wrong and the file will not boot.
Now ... to protect from booting an exact copy of a game from a DVD-R or other recordable media, microsoft gave each XEX file a 'mediaflag'. This mediaflag tells the Xbox 360 from which media (cd-r, dvd-r, dvd+r, dvd-rw, hdd, dvdxbox, dvdxbox360, ...) the XEX is allowed to boot. Changing this mediaflag in the XEX header is not an option as it'll break the signature of the file (see above), so ... what's done in this firmware hack is 'break' the detection of the disc.
Retail games usually get a mediaflag where they only allow 'dvdxbox360' (Xbox 360 discs - different than a normal DVD because it has some specific bad sectors and special info in lead-in/out that can't be written with a standard dvd burner). The modified firmware will trick the DVD drive into reporting a DVD-R (or other) as a DVDXBOX360 to the Xbox 360.

How can you do this?
Well, right now you can't. The firmware has not been released to the public because it would mostly be used for piracy and that's not what this team wants (unlike the original Xbox hack this can't be used (atleast not directly) for homebrew and linux fun). But the research done by these guys is public as you can read their discussions of the last few months on the xboxhacker.net forums, so people with good assembly experience should be able to duplicate this hack.

If the firmware was released, what would it mean?
Right now the Xbox 360 DVD firmware can't be flashed via PC (and for us, end-users, even less directly by the Xbox 360 itself (Microsoft could probably flash the drive from Xbox360 tho)), because there's no software to do this. Of course, drivers and flashing software for Xbox360 DVD drives could probably be written (and some people have been working on this), but so far this has not been done (atleast not publicly).
So, that means you'd have to open your Xbox 360, open your DVD drive and desolder the chip where the firmware is stored on.
Each Xbox 360 DVD drive has a unique key, if that key doesn't match what your console is expecting your DVD drive will not work.
So next you will need to read your current firmware chip with special hardware (flash programmer), to find your unique DVD 16 byte key (stored at 0x4F00). Then you'll have to insert this key in the modified firmware (or patch your original firmware) and program this modified firmware back on the firmware chip. Then put the firmware chip back in the drive, close DVD drive and Xbox 360 and I guess you're done.
As said above the hack would allow you to run MS-signed and unmodified XEX files only, so that also means the game must be of right region (as changing the regionflag in the XEX header would break the signature). Unsigned, homebrew executables would of course not work, again because signature check would fail.

LIVE and Updates ...
Can you go on LIVE with this hack? Well the firmware isn't released, so noone can try, but I'd guess it would work yes. The Xbox 360 itself is fully in 'normal state', nothing is modified to the Xbox 360 itself, it just gets 'wrong' info from the DVD drive. Of course if you start modifying non-signed files (like textures, ini files, ...) in order to cheat on LIVE or so MS could easily check for that.
Can Microsoft stop this firmware hack with forced LIVE updates? They could probably try detect a basic modified DVD firmware, but anything the Xbox 360 asks to the DVD drive goes via the DVD firmware, and if the firmware is 'open' in the hands of the hackers the firmware can probably each time be modified again to give the reply that the console expects. Microsoft could maybe do more with a HW security update ... but I'll let them analyse that.

(Note that all info above is based on all stuff I read ... if I made any mistakes, let me know)