Kotaku Staff Writer Jeremy Winslow Discusses the Metaverse, Harassment, Projects, N Much More

Explicit content warning

02/02/22 • 66 min

First would like to thank Jeremy for taking the time out to sit down with me and answer these questions. If you would like to read any of Jeremy's articles please go over to Kotaku where he has now over 100 articles posted on the site. Below I will list hist socials
Jeremy Winslow
-----------------------------------
Kotaku articles: https://bit.ly/347RVof
Twitter: https://bit.ly/3m9PMgE

Support the show

Send us a text

Support the show

Previous Episode

PS5 Webkit Exploit Allows The Internals of PS5 To Be Investigated

Send us a text

Link to article: https://bit.ly/3KZldG2
PlayStation scene hackers Chendochap and ZNullPtr have released a PS5 Webkit execution toolkit, based on the FontFace Webkit vulnerability. Although not a Jailbreak, this gives people with the right set of skills userland execution tools to dig deeper into the PS5 security, and takes the scene one step further to implementing the known kernel exploit (which would lead to a Jailbreak).
This exploit works on PS5 4.03 only at the moment. Firmwares above 4.03 are patched and have no hopes of getting this specific exploit to run. Lower firmwares are still a possibility, although the hackers mention that 2.00 and lower apparently do not have the vulnerability (as they do not have the vulnerable FontFace code in the first place)
PS5 Jailbreak: The story so far
Late last year, a full PS4 Jailbreak was released, leveraging a webkit Fontface exploit for its userland entry point, and a filesystem bug in the Playstation 4 firmware for privilege’s escalation.
Both the Webkit vulnerability and the kernel exploit have been confirmed to impact the PS5 as well (here and here respectively), leading to strong hopes from the PS5 scene that a PS5 Jailbreak was right around the corner.
A “port” from one console to the other is not a straightforward affair though, as the PS5 is pretty much a black box at this point for the hacking scene, and with Sony undoubtedly adding more security mechanisms to their new generation console.
It’s clear that several hackers have been hard at work trying to transform these vulnerabilities into a full fledged PS5 Jailbreak, as confirmed by today’s release. Significant progress has been made, but this is not an “end user” release at this point.
PS5 Userland Webkit ROP Release and writeup
Once again, we must emphasize that this is not a released intended for End users. It gives people on PS5 4.03 access to ROP execution, which could help them investigate the internals of the PS5. This work relies on the same Fontface Webkit vulnerability as the PS4, but the hackers had to leverage other mechanisms to gain execution access, as explained in the writeup:

Support the show

Next Episode

Man Robs A Bank As Sonic The Hedgehog and Leaves With Nothing

Send us a text

Link to article: https://bit.ly/3sxSL5C
A Florida man attempted to rob a bank wearing a Sonic the Hedgehog mask. The West Volusia Beacon reports that officers were dispatched to the Florida Credit Union in DeLand, Florida on February 2 in response to an armed robbery in progress.
The report said the suspect, wielding a hammer, confronted a bank employee to demand money. However, the suspect eventually ran away on foot, with witnesses describing the person as wearing a mask resembling Sonic from the video game series. The suspect is reportedly still at large.

Support the show