(Warning)Vita Vpks that Brick your vita are surfacing online! (Warning)

Discussion in 'PS Vita - Hacking & Homebrew' started by Abu_Senpai, Oct 1, 2016.

  1. Abu_Senpai
    OP

    Abu_Senpai The Red King

    Member
    1,500
    755
    Jul 13, 2014
    United Kingdom
    Tokyo
    This just was announced over on Reddit at /VitaPiracy

    Apparently a Reddit User uploaded TWO vpks earlier today which were:

    "Fruit Ninja [US] [TESTED] [MAIDUMP]"

    "kung fu rabbit - tested working - maidump v233.2z8"

    Those unfortunate pirates who downloaded said Vpks and installed them have been had meaning that their Ps Vitas have been BRICKED PERMENANTLY!.

    So be EXTRA Cautious when it comes to using backups guys!

    Here is a explanation of what happened in more detail:

    "Technical explanation from /u/tuxdude143;

    I have been analysing the vpks along with a friend and we have found that both of them make calls to OS0. The particular cause for concern is how they call for OS0 to be mounted along with OS0:KD and VS0. Now once those are mounted it basically just wipes them clean. The consequence is the vita had no operating system to boot at all, nor does it even have any drivers to interface with any of the components (which are contained in OS0:KD. Basically the result is an UNRECOVERABLE BRICK which leaves the nand completely wiped and unbootable.

    Consider it the first ever serious vita virus"


    "Been analysing this with a friend and from what we have found out it seems the mai.suprx mounts some rather odd things, namely vs0 and os0 before nuking vs0, os0 and most destructively, os0:KD aka the driver directory"


    The user who uploaded said .vpks definately did so with malicious intent so id be extra weary when installing .vpks
     
    Last edited by Abu_Senpai, Oct 1, 2016


  2. Cinnamon

    Cinnamon GBAtemp Regular

    Member
    257
    70
    May 2, 2014
    Norway
    I feared this would happen due to how the dumps basically are homebrew and can be modified to be malicious. Not being able to use Sony's distribution packages may possibly hurt the scene now when people have figured how to sneak in malicious code that may brick the device. Even more scarier is the though of delayed malicious code.
     
  3. SirByte

    SirByte GBAtemp Fan

    Member
    494
    191
    Dec 30, 2012
    Canada
    Wasn't it so that all 'backups' from retail games have no reason not to be 'safe' (if not, why not)? If yes, how come they're still installing unsafe packages?
     
  4. Cinnamon

    Cinnamon GBAtemp Regular

    Member
    257
    70
    May 2, 2014
    Norway
    Maidumps are not marked by that prompt by Vitashell which these people have been using, simply because it doesn't use vpks. For now.
     
  5. Tony_93

    Tony_93 GBAtemp Addict

    Member
    2,196
    1,004
    Jun 13, 2015
    United States
    California
    When you are a pirate you download anything from the internet and don't care to double check if anything as long as they are free gamez.... I know cuz I been there before :P
     
    SuperDan and Abu_Senpai like this.
  6. Autz

    Autz GBAtemp Advanced Fan

    Member
    564
    261
    Feb 18, 2016
    Venezuela
    My common sense tells me that the same can't be archieved on 3DS since games run on Arm11. But is possible?
     
  7. yifan_lu

    yifan_lu @yifanlu

    Member
    660
    1,373
    Apr 28, 2007
    United States
    We knew something like this was going to happen which is why safe homebrew was a thing. We worked with the_flow to implement it and that's why you wouldn't get such a virus from using vitashell + vitamin. Unfortunately other people aren't as cautious.

    — Posts automatically merged - Please don't double post! —

    Sure, just use that svc back door that cfws love to insert.
     
  8. Elizabethx90

    Elizabethx90 Advanced Member

    Newcomer
    75
    13
    Aug 24, 2016
    United States
    Can you elaborate on the backdoor's? And which cfw would you suggest personally?
     
  9. Jao Chu

    Jao Chu GBAtemp Advanced Maniac

    Member
    1,921
    1,211
    Aug 20, 2013
    straya m8
    Ouch, well there's another low blow our scene has taken :(

    Anyone remember the days of the DS scene when a certain someone released a version of FlashMe that bricks DS's?

    Hard mods and NAND dumps would be nice as always, but i suppose we have high expectations as a result of being spoiled with how violated the 3DS platform is, Lol. Perhaps we'll never have the luxury with our PS Vitas....
     
  10. Rizzorules

    Rizzorules "What are you doing?" "Something unexpected."

    Member
    918
    367
    Aug 17, 2013
    Netherlands
    This releases have a considerable size or they are 10 kbs?
     
  11. yifan_lu

    yifan_lu @yifanlu

    Member
    660
    1,373
    Apr 28, 2007
    United States
    Well if you only use safe homebrews, you won't be able to brick your vita ever. But I didn't know that the mai people never implemented the checks. They might not have known about it. But that's on them.
    svcBackdoor lets you run kernel code from homebrew. A big security hole that just begs for someone to write a bricker. I don't know which cfw doesn't do it, so I don't have any recommendations.
     
    Count Duckula, DrkBeam and Awsder33 like this.
  12. ih8ih8sn0w

    ih8ih8sn0w Koreaboo

    Member
    1,669
    732
    Aug 22, 2015
    United States
    Hell
    The 3ds has firms locked down on boot (a9lh wise) or has emunnad (other entrypoints). Just keep backups, make sure the stuff you download isn't made or released by someone sketchy, and you don't have to worry about anything. Also, stick to luma3ds.
    Back on topic though: I'm surprised that the vita allows for this to happen. I know a hacked consoles environment isn't the best, but the ability for an application to just wipe nand is interesting. Then again, I don't understand a whole lot about that...
    edit: every cfw has a patch for svcbackdoor (read the above post), but corbenik allows you to disable it (not recommended). Things like ntr cfw rely on it, but it isn't powerful enough to just wipe nand completely.
     
    Last edited by ih8ih8sn0w, Oct 2, 2016
    Abu_Senpai likes this.
  13. insidexdeath

    insidexdeath .

    Member
    1,135
    463
    Apr 13, 2010
    I suppose Mai could add a check for edited .suprx files to ensure this doesn't ever happen again. I can't believe people would go this low. Yes piracy is bad, but that does not justify bricking people's devices just because they're pirates.
     
  14. Axido

    Axido GBAtemp Fan

    Member
    439
    430
    Feb 12, 2014
    Germany
    If anyone wants to make a software for checking the .vpk files, I'd suggest naming it Avita Antivirus.
     
  15. Eyesenish

    Eyesenish GBAtemp Regular

    Member
    154
    28
    Sep 12, 2009
    Canada
    thats why you download files that have been tested only :)
     
    Awsder33 likes this.
  16. Awsder33

    Awsder33 Newbie

    Newcomer
    8
    2
    Sep 8, 2016
    Brazil
    One quick question: Is the Vita Organizer safety check the same as the Vita Shell safety check?
     
  17. Memoir

    Memoir A Hero to Zero

    Member
    GBAtemp Patron
    Memoir is a Patron of GBAtemp and is helping us stay independent!

    Our Patreon
    4,855
    4,596
    Jun 24, 2007
    United States
    Wyoming
    You have too much faith in people. Honestly? It was only a matter of when and not if. You give people the opportunity to mess up someone's device? Don't be surprised if someone takes it.
     
  18. cvskid

    cvskid GBAtemp Addict

    Member
    2,237
    822
    Apr 13, 2014
    United States
    That's a shame people have to worry about stuff like this now.
     
    Abu_Senpai likes this.
  19. Memoir

    Memoir A Hero to Zero

    Member
    GBAtemp Patron
    Memoir is a Patron of GBAtemp and is helping us stay independent!

    Our Patreon
    4,855
    4,596
    Jun 24, 2007
    United States
    Wyoming
    You can't be sure... As one of those files as marked tested. Lesson here is stay the hell away from reddit for downloads.
     
  20. leerz

    leerz GBAtemp Advanced Fan

    Member
    528
    133
    Jan 11, 2015
    Makati
    Can vitashell and henkaku prevent access to those partitions?
    I know it has a safe mode.
    Henkaku can chexk live if the mount is clean./not fcked up, make so snapshots etc