It looks like the latest issue for Nintendo's latest hardware can't be solved with a download. Nintendo and their latest hardware, the Switch may be in for some rough waters, as it appears there's a new exploit that could directly affect console owners. Hacker Katherine Temkin and the hacker team at ReSwitched have just released an extensive outline of a coldboot vulnerability they're calling the Fusée Gelée. Along with the report, the team also put out a video of the exploit running on a Nintendo Switch. Link: http://www.shacknews.com/article/10...s-all-nintendo-switches-unpatchable--hackable
I like the name "Fusée Gelée" (Frozen Rocket) ; it'll make people try to type "é" a lot more than normally. Bémol: It could be patched in future hardware.
Rough waters? This literally happens to every system; system gets released, hackers figure it out, homebrew exists.
Hoping these hackers get blown out of the fucking water. As the first competent game console in years, the Switch doesn't deserve piracy and homebrew so soon after launch.
The women that discovered the flaw acted with great professionalism though. As a security researcher, she contacted Nvidia and Nintendo to disclose the exploit privately before releasing it publicly at a later date, and she published her findings in an open source way, without profits, while sending a few jabs at Team Xecuter and their dark hats. She also doesn't endorse piracy.
To be fair, multiple different people discovered the flaw. Fail0verflow discovered the bug before (its the same bug) and also had a disclosure window, which was apparently up today. But they released 2 days early as its all public now anyway. https://fail0verflow.com/blog/2018/shofel2/ They have been working on making Linux work for months. But facts are, it will be used for piracy. Endorsed or not.
Yeah, the ethics of discovering a flaw are complex. But it's normally regarded as ethical to disclose privately then publicly later on, so as to protect the consumers and diminish the likelihood of the flaw becoming either a 0-day exploit or being disregarded by the company, and thus becoming a risk to consumers.
