Siri hacked to work on jailbroken iPhone 4 and iPod touch

iPhone experts Steven Troughton-Smith and chpwn seem to have just gotten the iPhone 4S-only Siri working on jailbroken iPhone 4 and current-gen iPod touch units this evening. This bypasses earlier authentication issues. They tweeted their success and posted a screen shot showing Siri working via Wi-Fi (the Airplane Mode icon just means that 3G is turned off, but it is possible to turn Wi-Fi back on even in AM; that's what they did.)

Their success comes just weeks after the iPhone 4S debuted. Since Apple's back-end systems are checking for iPhone 4S devices before processing Siri queries, they managed to work around this limitation. The hack is based on moving compiled code components from a 4S to the older units.

In an interview with 9to5Mac, Troughton-Smith recounts that the Siri transplant was about a 20-step process, and that it does require access to a jailbroken iPhone 4S to work. He has no intention of releasing the mod to the public; this is a proof-of-concept only.

Siri hacked to work on jailbroken iPhone 4 and iPod touch originally appeared on TUAW - The Unofficial Apple Weblog on Sat, 29 Oct 2011 22:27:00 EST. Please see our terms for use of feeds.

Source | Permalink | Email this | Comments

Sony Portugal latest to fall to hackers

Sony Music Portugal logoThe same Lebanese hacker who targeted Sony Europe on Friday has now dumped a database from Sony Portugal.

The hacker claims to be a grey hat, not a black hat, according to his post to pastebin.com.

"I am not a black hat to dump all the database I am Grey hat"

Instead of dumping the entire database like many previous Sony attackers, idahc only dumped the email addresses from one table in Sony's database.

Idahc tweet announcing Sonymusic.pt hackHe claims to have discovered three different flaws on SonyMusic.pt, including SQL injection, XSS (cross-site scripting) and iFrame injection.

By my count, this is the 16th attack against Sony since the chaos came raining down on them in mid-April.

There were two other breaches on Monday by LulzSec, but I simply couldn't bring myself to write about more Sony hacks.

LulzSec compromised the Sony Computer Entertainment devnet and downloaded the source code for SCE's entire website, which they posted on BitTorrent.

In what LulzSec claimed as a separate hack, they also disclosed a complete network map detailing all of the Sony BMG internal systems.

In what I suppose you would call their press release, they stated:

"We've recently bought a copy of this great new game called "Hackers vs Sony", but we're unable to play it online due to PSN being obliterated."

The question that remains is whether Sony is reacting to this situation at all, or whether their strategy is simply to hope it goes away.

You would expect an organization with 170,000 employees and over $88 billion in revenue over the last 12 months to be able to round up the resources necessary to secure their web presence.