Hacking Massive Security Bug Found In OpenSSL

[rooshoes]

The Heartbleed bug allows anyone on the Internet to read the memory of the systems protected by the vulnerable versions of the OpenSSL software. This compromises the secret keys used to identify the service providers and to encrypt the traffic. This allows attackers to eavesdrop on communications, steal data directly from the services and users and to impersonate services and users.

It is doubtful this will have any relevancy to the Homebrew scene as the 3DS console uses its own physical AES chipset/engine, but could be applicable to the Pokémon Global Link, should it be using OpenSSL. I presume if an attacker gained access to the key(s) used to encrypt Pokémon transfer data, one could set up a spoof server and manipulate any data sent to the game.

 

[chrisrlink]

like the HyperGTS program of Gen 4/5 Games?

 

[indirect]

It is doubtful this will have any relevancy to the Homebrew scene as the 3DS console uses its own physical AES chipset/engine, but could be applicable to the Pokémon Global Link, should it be using OpenSSL. I presume if an attacker gained access to the key(s) used to encrypt Pokémon transfer data, one could set up a spoof server and manipulate any data sent to the game.

There is a few ways this could be applicable but it's all requiring someone to actually commit the illegal act of accessing the memory of Nintendo's servers. I don't want to get mixed up in the legality all for some nice hacked pokemon...Also I would never encourage anyone to act on this bug on nintendo's server because well, it'll probably (pretty much definitely) end up in getting charged if caught.

Nonetheless, the bug itself is pretty much a big deal, even services on Nintendo's servers could be compromised such as SSH and FTP. That's a HUGE deal. But meh, hopefully Nintendo would plan on a security audit if the GTS and such is affected by these bugs...

 

[McHaggis]

To quote an excerpts from heartbleed.com:

What leaks in practice?

We have tested some of our own services from attacker's perspective. We attacked ourselves from outside, without leaving a trace. Without using any privileged information or credentials we were able steal from ourselves the secret keys used for our X.509 certificates, user names and passwords, instant messages, emails and business critical documents and communication.

This means that a vulnerable server could be impersonated if someone was able to get those secret keys. You could think much bigger than GTS if you wanted, assuming someone is/was quick enough to exploit the vulnerability before Nintendo has a chance to patch it (assuming they are vulnerable).