PS4/PS5: New PlayStation $20’000 bounty awarded to TheFloW on Hackerone, ignites the scene
Some hacktivity going on at the PlayStation bounty account on HackerOne, over the past few days. After months without movement, we’re seeing 6 new closed reports, including one for $20’000 awarded to hacker extraordinaire TheFloW. And of course, the scene is speculating.
$20’000 is one of the highest bounties ever awarded by Playstation on the Hackerone account, topped only by two bounties awarded to Octoxor (40’000 and 25’000 respectively) in the early days of the program, 2 years ago.
At $20’000, whatever vulnerability TheFloW has revealed to Sony categorizes as “Critical“, whether it’s for the PS5 or the PS4. This probably means root access/kernel exploit/Jailbreak (call it whatever you like). Which, honestly, isn’t surprising, given the hacker’s propensity to take any given vulnerability to a fully weaponized Jailbreak, since his early days on the PSP.
TheFlow has strongly hinted late last year that he has a PS5 Kernel exploit, and the awarded bounty this week could be the result of this disclosure to Sony.
The hacker has not stated any particular plan to release whatever exploit is behind this, and it’s also likely that Sony, who have allowed PS4 exploit disclosure in the past, is not very keen on letting hackers disclose PS5 Jailbreaks just yet.
The 9.00 Jailbreak had been discovered through a diff between 9.00 and 9.03, so we’re also suspecting that Playstation are trying to not give any clue as to which firmware might have had the patch for this specific exploit. It’s possible the issue’s been fixed ages ago.
The hacking scene is dead when a so called “hacker” submits a vulnerability to Sony and get paid for it while taking a credit how good he is?
GTFO! What a joke! Such a disgrace to the hacking scene. When you’re taking a payment from the creator to disclose a vulnerability, you are called a snitch!
Are you a fxxking 3-year old?? Hackers aren’t exactly a legit trade under daylight, and besides he owes you nothing. If you’re a really hacking scene die-hard, you’d learned the rules: You don’t demand stuff; you appreciate stuff when a fellow hacker shares generously, and give him all the bragging rights he deserves.
Don’t like that he kept it to himself? Well, let’s see if you can do better than him. Don’t just whine like a swine!
Well said.
word
Are you *** jay from the inbetweeners by any chance?
20k is 20k dude but I’m sure you would tell Sony to stick it if you had found the bug.
Sony will prepare an update where it is fixed – stay on the lowest possible for now – the exploit will be released sooner or later by TheFlow, but only for those, who wait – it has nearly always been the same procedure in the early past and a fine solution for me -> letting hackers do the work for both sides – no blame
How do you know? TheFloW said last year they had no plan to release anything for PS5. AlAzif also claimed most people she had contact in the scene had no plans to publicly disclose anything.
Its actually ok if they submit the vulnerability. It what drives them to be better after getting paid. But I also agree with you for some of them being a disgrace specially TheFlow. He even teases the scene about it, but doesn’t disclose it. Its like saying “hey guys look what i found, bet you cant have this”. Such an A**h**e. He even tweets to the scene devs as if he OWNS the bug being used by the people doing the jailbreak.
clearly you dont own a vita, i think you have him confused with failoverflow
dude, check yourself! look at what TheFlow has done for the scene! he deserves respect and to be rewarded for his brilliance, he has always towed the line between white-hat and filthy pirate in the most intelligent way, unlike failoverflow and others that refuse to release anything, TheFlow has a plan, and if he can get paid for an exploit and publicly disclose within a reasonable time i think he should.
Boy please, nobody owes you anything script kiddy.If you want it hacked do it yourself.
Giving hacks to the community doesn’t pay bills. Your just salty because you didn’t make the money and can’t steal games on your console.
https://imgur.com/a/zvNGkyQ
I think you’re the one BIG example of what a “disgrace to the hacking scene” is.
Besides, da *** are you even going on about on that last part there? You DO know that he can’t disclose anything if Sony doesn’t allow it right?
I’d rather have those “FiRsT” comments than see this eyesore.
Aww! He’s mad he can’t do piracy yet. I’m sure they’ll be another exploit for PS4, and one for PS5. I didn’t even know They’ll was still going from the PSP days and all these new names. lol For somebody going that long, why not profit from it? Makes sense
first
Wow, impresive!
1rrrrrrst
Happy fools day everybody 😛
You’re 8 days late. This one’s not an April fool’s 🙂
I don’t know. Its still too early in PS5 scene to something happen.
I wouldn’t be too excited, its not a release date or anything and we don’t know if Sony really gonna let anything to be released.
Flow has no obligation to release anything to public. People just are wishful thinking.
Been waiting for half a year and maybe now the upcoming PlayStation plus similar to game pass might be a good deal to get a lot of games to play. Kinda seems the exploit becomes more irrevelant each day.
Plus a big downer, even if exploit is released to fw4.03, these exploitable consoles still wont be able to play newest games with latest fw requirements.
All multiplats are still available on pc, and hacked ps4 consoles are very cheap now to play those ps4 games.
I don’t know man, feels PS5 is better to be unhacked to truly taste the next gen with online support.
But if one day exploit comes out, I of course gonna try to use it.
first
First!!!
This is a PS5 jailbreak and 9.03, 9.04, & 9.50 jailbreak.
Is it possible that its a hyervisor vuln on the ps5 ? , and thats why the high bounty?
a ps5 kernal exploint was already found, but is not enough to enable “homebrew” , a 3rd exploit is needed to get past the HV security/sandbox
Hoping for the best
I hope that ps5 will be never broken
Don’t worry it wont be for quite some time. Not enough people have the systems and Sony is paying too much to keep that hack in the dark.
It will, when the next gen console comes out, or when Sony discontinues PS5. That’s the unspoken rule between the console makers and the hacking scene.
I hope that ps5 will be broken
I am trying to figure this out, If hackers are turning in bounties then where does this leave us for the scene.So basically we have to wait for a hacker to do something for the community for up to date firmware, cause old firmware will be hard to comeby
You figure this out only just now?? You want a hackable console you buy from the 1st batch when its released and let it sit on fw 1.0 for as long as it takes till a jailbreak comes out. It’s been like this since PSP era…
yes i know know this,ive been on the scene for 20 +years already,(script kiddie..lol).I am just stating it for people that might not know.I have huge respect for the scene hackers.most of my consoles are all modded including my kids PlayStations.Without then my ps1,2,3,4 consoles…vita and 2 psps would not have new life into them.
I used to beta test psps back in the day for certain hackers .modders…It was fun doing these for them.
I am open to being beta testing for the scene if they want.
Too cheap considering the possible damages in sales that Sony could have faced. They should have added at least another zero to that.
Well done dude, @TheFloW
Guys grow TF up. This is actually ideal as we get the exploit, they do not have to worry about Sony pursuing them and they get paid. 99% of you have never donated a dollar I’m your life. Want a hack and someone isn’t doing it fast enough? Learn yourself so you can deal with the ETA WEN kiddies. It is selfish attitudes like this that take folks from the scene. The flow, QWERTYUIOP, kakarato and more are gone because you script kiddies can’t get your WAREZ. We will not see a current hack on the latest firmware due to what happened with the PS3 scene.