Vita CFW leaked, Coldbird leaves the scene

There’s lots of things to be said about what just happened over the past couple days, and sadly I don’t have much time right now, but answers will be given asap to all of you. What matters for now is that a PSP Kernel exploit, as well as a CFW relying on it, fully working on the PS Vita, was leaked 2 days ago by a “Sam Jordam” guy on Youtube (download links below). One of the main persons behind this work (which wasn’t supposed to be released now), famous PSP developer Coldbird, decided to leave the scene today, after this leak happened.

I will give as much details as I can in the days to come, but for now let me just say that the files that were leaked have been confirmed by Coldbird to contain a Kernel exploit, but these files are encrypted, and potentially useless for anybody who does not have strong reverse engineering skills. Coldbird has confirmed to me (and in his blog) he has no plan anymore to release this CFW, so what we have here is a Kernel exploit that will most likely be wasted since I expect Sony to patch the vulnerability in a firmware update.

In addition to the Kernel exploit leak, the name of a game with a usermode exploit (as well as the user mode exploit) was also leaked. That game is the PSP Mini Urbanix, which, if you can read between the lines, readers of this blog already knew was vulnerable. If you are on 1.81, I recommend you get this game before it gets removed from the PSN, fully knowing that as of now, I personally don’t have anything running on this exploit (in particular no VHBL release is ready for this yet).

People who are running on 1.80 with the Monster Hunter exploits might want to stay on 1.80. If anything useful ever comes out of the kernel exploit, I am sure it will run fine on Monster Hunter as well.

At this point I think a bit more info is required about the leaker and how all of this was leaked. A private group of beta testers existed for this exploit, and in a sad chain of events, this person (who goes by the names of Sam Jordam, Batman:beyond, or ipadboy, among other of his identities) got his hands on these files through some basic social engineering, and decided to publish them.

It needs to be emphasized that all people involved were aware of the legal risk of publicly releasing such a tool, but this person seems to not be afraid of that (good for him, I guess, he probably thinks he can succeed where geohot and graf_chokolo failed). The hackers even went as far as encrypting the files to limit the damage in case those files were stolen, which is why, in their current state, the files are useless.

I also need to insist on the fact that, in unrelated events, this person had threatened the security of my site several times in the past, involving threats of hacking this site, attempts at stealing information,  illegal port and vulnerability scanning, as well as threats to some members of our community and some of our moderators. This person also insists on his video that hackers were trying to hide this hack from the scene in order to enjoy the hack for themselves, which is not true. Simply, most hackers working on that type of thing are realistic about the legal risks of enabling piracy on Sony’s latest device, which doesn’t seem to have crossed that individual’s mind. In other words, a truly great person, who doesn’t seem to worry he is doing illegal stuff.

Some of you might question the decision from Coldbird to leave the scene and not release his work after this. Please understand that it was not an easy decision for him, but there is way too much risk in releasing a Kernel exploit on the PS Vita right now, from a legal point of view. Sam Jordam took the risk of being the first person to release a tool that could easily enable PSP piracy on the PS Vita, while reasonable hackers were all clever enough to avoid these dangerous waters until know, and keep their work for themselves. Will this lead to Sony taking legal action against this guy? I can’t tell for sure, but other hackers didn’t want to be the ones testing the waters for that. Their files were stolen, so legally everything is on this guy’s shoulders, and I understand that nobody else would want to share the legal burden with a leaker, so there is a huge risk nobody will ever even try to touch these files.

There is also the feeling in the community right now that this person should not be helped. He decided to leak some files? Good for him, now let’s let him reverse engineer the files, and figure out a way to get it to work for everybody else. And if some of you disagree with this and think he could use some help, for the good of the community, then knock yourself out, the files are out in the open, I won’t judge (I’m sure most users would be happy with a PSP Kernel exploit on the vita right now).

As far as I’m concerned, I will try to get at least VHBL to run on the Game exploit, in order for this to not go to waste, and some people have already offered some help on that (they will be named in time).

Keep in mind that all that’s happening today is the result of the actions of one single person, and that is the only person to blame.

TL,DR: Some files containing a User mode exploit in Urbanix, as well as a Kernel exploit (that still has to be reverse engineered) were leaked by a youtube user named Sam Jordam. This guy was a known a##hole for some time already, and has proven to be up to his reputation. The files he stole then leaked are encrypted and not usable for anybody in their current state. One of the only persons who could have helped with this, famous hacker Coldbird, decided to leave the scene after this. There is so far one can go for the love of homebrews.

Bye Coldbird, and thanks for everything !

Download

The leaked files can be downloaded here

 

Details and source: Coldbird, Sam Jordam

  1. ProgZ’s avatar

    The real issue I have with this is the immaturity. One person proves untrustworthy and immature and releases completely non-functional work so another person proves immature and promises that no one will have the working version. It’s that act of punishing the innocent for the actions of a guilty party that I have a serious problem with and it shows a distinct lack of maturity and foresight as this seems to happen over and over and over in emulation/software hacking communities.

    Reply

    1. wololo’s avatar

      Coldbird’s goal was not to punish anybody, he just needed the break after an intense amount of stress. Try to remember everything he’s done for the scene over the past 2 years before you judge. At this point it’s crazy there are still people who question his decisions given how relentless he has been in improving his tools for the scene.

      Reply

      1. Johnny Bravo’s avatar

        I didn’t read his story as I dont have that much time to waste in my busy day.
        I’ve also just about ignored the PSP scene for a few years. If he’s done well and just needs a break then fine, good on him.

        I thought he was one of those bitches that just had a hissy fit coz his exploit got leaked. I never cared for those devs. Looks like all they want is fame where they should be in it for the scene and against Sony.

        People know me, know what I’m about and know I speak my mind sometimes without reading before posting. I’m one for sharing for free and not one that wants fame.
        I’m out there in the public and I know what it wants. “In the public” as I work with a console repair and sales shop. everyday people come in and ask for things so I know what they want. These days they are asking if the Vita has a CFW and if it can run backups yet so thats what the public want.
        We help them the best we can but it ends up with you guys finding the exploits and releasing them. I dont direct them to HBL/VHBL as its useless as it will only work till the next firmware. Same thing goes for tethered iPhone jailbreaks.

        Well, thats enough from me. Good luck Coldbird in whatever you chose to do.
        I am with the public and waiting for an ISO/backup loader to be released.

        Reply

  2. trecenters’s avatar

    I gave the wrong person keys to my house and someone has taken a bottle of my wine.

    I was saving that wine until it was old enough to drink.

    I will never drink alcohol and never let anyone in my house again.

    I had the cork glued though so good luck opening it.

    When would my wine ever be old enough? That is the question.

    There will always be one more year that I want it to age.

    It is humanity’s fault because that one person couldn’t be trusted.

    Goodbye World.

    Reply

    1. F’s avatar

      LMAO! Nice one!

      Reply

  3. vampirex’s avatar

    To be honest, PSP drama has been going on ever since i can remember.. Back when M33 CFW bricked PSPs when eboots were edited… my point is… im sad that the psp scene is dead, but also happy that maybe finally people will learn to respect these amazing people, and remember the things they have done. Good luck Coldbird.. tbh, i was actually hoppin he’d keep working on and release the Prometheus Online for PSP-1000… seems like that dream is down the drain as well.

    Good bye PSP-Scene, may you RIP.

    Reply

    1. StepS’s avatar

      he is still working on prometheus online

      Reply

    2. shadowfire90’s avatar

      yes scene drama lmao
      leaving the ‘scene’ is pointless.
      about as pointless as hiding your head in the sand with your body sticking out and thinking your hidden from the world and no one can see you or the problems around you.

      If sony wanted to go after this person, the proof is already there so leaving the scene is pointless. (which I really don’t think they would do)

      Sorry to hear your work was leaked but thats the risk you take when you put files into other peoples hands.
      Hopefully this is just a temp set back as I really don’t want to purchase all these psp games again :/

      Even when I had custom fw on my old psp, I still bought all my games. I just liked and enjoyed the ability to do more with it.

      Reply

    3. NakedFaerie’s avatar

      Remember when those eboots were getting edited. I was the one that stood up for everyone and I ruined the forum of the guy that did it. :D It took him months to get his forum back up and running again and he lost about 6-12 months of posts. LOL. That’ll teach him for bricking peoples PSPs and editing files he shouldn’t be editing.
      Still I get abused for sticking up for the public.

      Since D_A left the scene there has always been drama in the scene. Nobody is as good as him and everyone that tried just copied his work but couldn’t do as good he did.

      Now its just full of bitches crying when leaks happen because they sit on it for ages and dont release it to the public. OF COURSE it will be leaked if you dont release it and its something the public really want.

      Doesn’t matter how good they are, if they dont release anything they are as useless as the next troll.

      Reply

  4. Quarterback’s avatar

    since Sony knows what game has a kernel exploit. goodluck

    Reply

    1. Gadorach’s avatar

      Kernel exploits usually have no reliance on the game its self, it just requires a way to execute the exploit, so a usermode exploit is just the way in. As long as we have a usermode exploit, we can run this kernel exploit, right up to the point at which it’s decrypted and released, and therefore patched. Never think that a kernel exploit is always reliant on a game, as that’s simply not the case.

      Reply

      1. Quarterback’s avatar

        my point is the game will be patched next firmware update.

        oh well i dont have enough knowledge about this thing.

        Reply

  5. Yes’s avatar

    I have extra respect for developers who actually takes responsibility for piracy issue. This seems to be the case here. Instead of just releasing it at once, it is nice to see that they concider the outcome of the release.

    Reply

  6. INFINITY’s avatar

    Wait! What about UVLOADER is that still going or is this project based on that.

    Reply

  7. Green Ranger’s avatar

    Won’t support this guy ever.

    It really sad, that a talented Developer like Coldbird are leaving the Scene because of such a Douchbag…

    Every Dev outta here should not support this guy or even try to reverse the files.

    Reply

  8. shadowfire90’s avatar

    Wow, Sad that every time Wololo posts something about homebrews, there are only 30 comments, but when Wololo talks about ColdBird leaving, it gets a shitload of comments. Why weren’t all the people here saying thanks to all the homebrews? That’s sad and you know who you are you greedy ignorant fucks.

    Reply

    1. alex’s avatar

      That because we all come to his site, and every body knows wololo is the man. He is an awesome dev, and he keeps us all up to date with his site. He knows hes the man. Im one of who know how many people on this site. Even if I sat here all day parsing wololo, I dont think he knows im here. Im grateful for his, and all the devs hard work, but most of them do it because they love it; not to get props from the community. Most Devs know that their work is GREATLY appreciated by most of the users.
      I say most because we all know there is always some son of an onion that is selfish, but what can you do.

      Reply

    2. Asukafag’s avatar

      Why should we comment every single homebrews and news on this site? And we talking not just about coldbird leaved the scene but about leaked CFW as well, you uneducated swine.

      Reply

  9. alex’s avatar

    WOW!!! I just read Coldbirds explanation on his page and judging from Sam’s response to Colbird’s fair warning, I have to say this Sam kid seems like a complete sociopath.
    His response almost sounds quoted from some action movie strait from the villains mouth.
    Whatever this Sam kid gets; he totally asked for it, and deserves whatever horrors are coming his way.

    Honestly I feel a bit bad for the kid. He’s probably one of these guys that tries way to hard to be liked by people, and only gets on every bodies nerves.

    Reply

  10. SoulOfCloud’s avatar

    Hi guy, the trick for have urbanix and Jewel keepers free run always in FB !
    https://www.facebook.com/SonyPlaystation/app_423711397642076

    Enjoy !!

    P.S : sorry for my bad english but i’m french !

    Reply

  11. 2die4’s avatar

    some one else will come forward theirs way tooo much e-fame to let it go

    Reply

  12. joseph’s avatar

    can any one get this working im not hacker but im going to keep messing around with my vita maybe i will fine something

    Reply

  13. raikov2006’s avatar

    Me and my friends have got the necessary skills to get this working. Even a uni teacher said he will help. The only thing is that they don’t no the ps vita functions and how it runs. And they don’t have time to learn. I’m not asking for anything jus how would I go about doing it my self. What files are encrypted and what files are. Needed to complete this?

    Reply

    1. 2die4’s avatar

      You will need to look for the exploit you already know 50% its in urbanix its in the savegame so that means something was edited in some it’s as simple as changing the number of letters in the name if the name is 10 digits and you change it to 11 then the memory might not be able to handle it, the first step is a usermode exploit after which u do the escalation to get a kernal exploit to get the code into memory

      Reply

      1. 2die4’s avatar

        Look at how vhbl works tutorials here then change it for the game your using

        Reply

  14. PkmnCenter’s avatar

    Would this exploit work for the super collapse 3 vhbl if it gets cracked?

    Reply

  15. n00neimp0rtant’s avatar

    In the event that Sony decides to block transfer of the game between devices via their auth server, I cached their encrypted lists. Even if they change the lists, we can use the old ones since we don’t have to modify them. Email me if we end up needed them

    Reply

  16. Gourcuff’s avatar

    So what do we do? Do we stick to 1.80 /1.81 waiting for a hypothetical something to be released (and maybe wait for ages)? Or should we upgrade to play future hits such Call of or Assassin’s Creed and access PSN when the exploit is patched with firmware 1.82?

    Reply

  17. joseph’s avatar

    i know alot of people are dying for this kernal exploite right now im up day and night researching and trying stuff
    on my vita with vhbl and monster hunter going threw all the files i hope i can come across something if anybody wants to help me email me joeyj1717@gmail.com

    Reply

  18. Charles Velazquez’s avatar

    I’m not saying what he did was right, but at least he acknowledges his mistake and gave an apology in the video. Maybe coldbird might come back to the scene one day, me personally from a programmers perspective. If you really love doing something, you don’t let anybody stop you from doing such. Their Encrypted and probably won’t ever be usable. They were even being cautious about the whole privacy thing, which is a huge step. Look at how jailbreaking the iDevices went in history.

    Reply

    1. vampirex’s avatar

      lol apology videos… more like sarcasm to me.. notice the latest video, he puts a slideshow of dead birds… to me, he is mocking us..

      Reply

    2. Casavult’s avatar

      You serious? He posted another video of dead birds… Obviously mocking Coldbird. I think Coldbird deserves a huge long break. The guy has worked so hard over the past few years making amazing stuff for many users.

      Reply

    3. Crispy’s avatar

      Love Coldbird very much but this part of the scene he wont be seeing again me and him agreed that making a family is more important. He will be still working on his pro online though which he enjoys.

      Reply

  19. Helder’s avatar

    This makes me remeber the time of iPad 2 and jailbreakme, when a YouTube noob had hacked comex server with brute force attack and leaked the pdf file that jailbreak only a old os version 4.3.1 that is only installled in first iPad 2 units

    This makes comex work many ours to finished the jailbreak and release it before Apple patch it

    The differece betweeen coldbird and comex is, comex had released their work and worked hard to finnish it, and couldbird no, do what is more easy, left the scene.

    Reply

  20. Zanor’s avatar

    Is it just me or are 80% of the people in the PSP hacking community whiny, selfish, 12 year old aspies? Every time a post is made on this site a bunch of little faggots come in and fucking DEMAND these kind people to release tools that they know would ruin the Vita at a very early time in it’s life. Have some fucking class or a little restraint at the least.

    Reply

  21. 91’s avatar

    Sam bitchass jordam. -Location US Atlanta Ga. Ip- 209.85.216.67

    Reply

  22. Jared’s avatar

    I can’t believe this… How can someone be so ignorant? He took this away from so many people…

    Reply

  23. w7y7a7t7t’s avatar

    man, sucks coldbird left, i’ve kinda been quietly following the psp scene for the past few years. i remember when pro cfw was first released, and there was the whole total_noob vs pro team thing… damn, to bad he’s leaving he was a really talented guy. well, all i can say is, good luck to him with whatever he purses next. i’m sure his wife is happy though, she probably get’s more time with him haha :)

    Reply

  24. letsrapetheleaker’s avatar

    ErrrpGod u guys r so stupid, would you really risk your ass going to prison for a damn game console? Nooo ..so stop bitching cold bird did the right thing and took the no lawsuit no prison time route, that prick who jailbroke.the iPad 2 had nothing to worry about because its legal

    Reply

  25. NakedFaerie’s avatar

    Anyone get the leak working? I cant get the long filenames to copy to the Vita. I’m on 1.81
    All the small files if you make the uppercase and make sure they are in the 8+3 files system they do copy over but the long files dont.

    I’m guessing all the future hacks will need to be changed to fit into this file system.

    Reply

  26. srk3461’s avatar

    F**k U!! sam jordam! I hope sony gets him real hard… and Good luck Coldbird, you’ve done enough. And thanks for your handwork and time to the psp scene! we’ll really miss you allot!

    Reply

  27. Axido’s avatar

    Today someone else published a working CFW for the Urbanix Exploit on a German Playstation Forum. Now ISO/CSO and everything else possible on the PSP is also possible on the Vita. PSV is going down like PSP was. And now you can imagine why Coldbird left the scene.

    Reply

    1. NakedFaerie’s avatar

      Got the link?

      Reply

    2. Gourcuff’s avatar

      Link??

      Reply

      1. NakedFaerie’s avatar

        Awesome. Thanks. :D
        This is what we’ve been after. The next thing is to stop Sony from taking it away.

        Reply

    3. ProgZ’s avatar

      No, I really can’t imagine why someone would leave the scene because tools they were working on to hack a device were released by someone else in working form. The Vita is already floundering by all standards, there have even been entire articles published about how third parties just aren’t really ‘interested’ in the device..and before you whiners start crying about hackers that has nothing to do with it at this stage. As nice as the handheld is, I’d much rather be able to use it for emulators and my old library of psx games than be stuck with 2-5 vita releases that are actually promising IN A YEAR.

      Reply

  28. ananomus’s avatar

    sound like a baby to me. who cares? cry all you want baby! ;(
    Like you who ever did this keep going you have a follower anonymous wont give my name out dont like crap thrown @ me. Postive feedback from me! :0

    Reply

  29. David’s avatar

    I am always so impressed with peoples knowledge in the scene, and it is such a privilege to use their tools. I have a beginners knowledge on programming and it really needs to be your passion to reach levels like I see on these sites.

    To see Cold Bird need a break is nothing out of the ordinary. My passion is art and there are days I’m so sick of the idea of creating that I can’t lift a pencil or brush much less create.

    I just want devs to know out there that there are people who really appreciate your work and don’t feel you owe us a thing. A passion is for you and you alone and I feel privileged to be allowed to use the result of your abilities. Thank you.

    Reply

  30. agonishadow’s avatar

    huh…now can’t get the “Urbanix” from PSN,good job sony.

    Reply

  31. gr8n00d1e’s avatar

    Sh*t!!I just hate this kind of guys! They never thinking the result of what they are doing. How many hacks are wasted like this. Damn…

    Reply

  32. david’s avatar

    It’s too bad,all of this because of an immature man…

    Wololo “everything he’s done for the scene over the past 2 years”

    i didn’t knew that,

    Reply

  33. Gaoban’s avatar

    You know those files that were leaked by that dick sam whatever his name is. I downloaded the leaked files. They contain Vboot files. They did not work when I first tried them, but then I changed the vboot to eboot ad they worked. I am not sure if they can run full speed psx games, but from the comments I heard that it can. Does anyone know where they can get the leaked files. If not I can upload a link to them. But it seems just like a VHBL to me.

    Reply

· 1 · · 3 · 4 · 5

Reply

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>