authors

Live demos show how the Nintendo DS and the Wii can be hacked to spread malware (videos)

July 31, 2010 5:33 PM
Dean Takahashi
Add a Comment

Two hackers showed how they can hack Nintendo‘s handheld and console game devices to spread malware to whatever networks they are connected to.

At the Defcon security conference in Las Vegas, Ki-Chan Ahn (below) and Dong-Joo Ha (right) showed off a number of demos of how they could crack the Nintendo DS and Nintendo Wii and use them to upload malware. They said users don’t expect malware to be loaded on game console devices, so they could be taken advantage of more easily. (See our roundup of all Black Hat and Defcon stories.)

The researchers said they could spread malware in a number of ways. They could, for instance, inject a virus into a pirate version of a Nintendo game and upload it to torrent networks, where users download pirated games. They showed how they could play a game in a compromised Wii system.

They also found that many companies install Nintendo Wii devices in their work places, even though they don’t let you walk into the company with smartphones or laptops. (Factories and other sensitive work locations don’t allow any devices with cameras). By poisoning the Wii, they could spread a virus over the corporate network. People have a false sense of security about the safety of these game devices, but they can log into computer networks like most other computer devices now.

In the demos, the researchers showed they could take compromised code and inject it into the main game file that runs on either a DS or a game console. They could take over the network and pretty much spread malware across it and thereby compromise an entire corporation. The researchers said they can do this with just about any embedded device, from iPhones to internet TVs. All that is needed is an embedded computer, networking, and input-output systems. A few of the demos failed because wireless networks weren’t functional.

Ahn is a student at Hanyang University in South Korea, majoring in electronics. Ha is a researcher at AhnLab, a security firm. Check out the video excerpts below:

GamesBeat 2013GamesBeat 2013 is our fifth annual conference on disruption in the video game market. You'll get 360-degree perspectives from top gaming executives, developers, and analysts on what’s to come in the industry. Our theme this year is “The Battle Royal.” Check out full event details here, and grab your early-bird tickets here!
  • http://twitter.com/Earnathometips jaysonlinereviews

    Hackers suck! They can crack pretty much everything …. Companies just need to hire the best good hackers that can keep the bad ones at bay!

  • http://twitter.com/Earnathometips jaysonlinereviews

    hackers suck! Companies just need to hire the best hackers in the World that dont use there powers for evil to keep the bad hackers at bay!

  • http://pulse.yahoo.com/_7ON5TKY6VQHBVJFGLAL43W7HHY meh

    Ok Nintendo, that's strike two! You guys are not doing very good with your piracy and hacking policies and safeguards of your software and now hardware. So again, the question developers and publishers are going to ask you “What are you going to do about it?” This is why many publishers are slowing down/reluctant to put out titles for your console. This is not speculation! I work at a top 3rd party publisher and I have seen this first hand! We have large stock rooms of dev kits, RVT-H and R's and wii equipment because our Wii titles are moving slower than before thanks to you guys not combatting piracy. This is also why I applaud Sony for removing the Other OS functionality after the hack was getting exposure. Believe me I groaned and was pissed too – I am an original 60GB owner, and when I found it was being removed I was very upset! But then I thought about what douches like GeoHotz was doing and other hackers and I can appreciate Sony stepping in saying “No! You are not going to ruin our product and the customer experience of our product!” Nintendo needs to make the same kind of stance or they will find the product lifetime of their console begin to dimise and shrink faster than the Gamecube!

  • http://twitter.com/ZapfLOL Jess Estridge

    Oh god why did I post twice

  • http://twitter.com/ZapfLOL Jess Estridge

    In order to actually run a pirated game thats had its code altered for malicious purposes, you'd have to have a hacked wii. Even then, most current wiis (since the black ones came out at least) are now incapable of playing burned games from the dvd drive, so that means a hacked wii and a usb drive and a usb loader set up on the wii itself. While this article definitely is interesting in the sense that there are plenty of people, corporate or not, with that setup and download games regularly, I don't get why the corporate network was being stressed in this demo – why would a company have a hacked wii lying around, hooked up to the network?

blog comments powered by Disqus

GamesBeat is your source for gaming news and reviews. But it's also home to the best articles from gamers, developers, and other folks outside of the traditional press. Register or log in to join our community of writers. You can even make a few bucks publishing stories here! Learn more.

You are now an esteemed member of the GamesBeat community. That means you can comment on stories or post your own to GB Unfiltered (look for the "New Post" link by mousing over your name in the red bar up top). But first, why don't you fill out your via your ?

About GamesBeat