Stories
Slash Boxes
Comments

SoylentNews is people

posted by martyb on Monday October 09 2017, @12:06AM   Printer-friendly
from the I-prefer-Ritz®-crackers dept.

A Russian software company by the name of Arusoft may have cracked 4K Ultra HD Blu-Ray DRM. All it requires is a PC with a Blu-Ray drive and a $235 piece of software.

At the beginning of this week a new mysterious company with a new mysterious software popped up, Arusoft with DeUHD. The company claimed that its software would be able to copy Ultra HD Blu-ray discs. In a statement to us, the company even stated that it considered AACS 2.0 to be cracked.

With a license of €200 ($235) there weren't many people who wanted to test and potentially lose their money. Therefore, the company handed out 5 licenses to randomly selected users and the first results are in.

To sum up the results: It works, but they don't appear to have cracked AACS 2.0 itself. Instead, the DeUHD developers appear to have found working keys for specific films.

Previously: Apparent Copy of an Ultra HD Blu-Ray Disc Appears Online [Updated]
More "Cracked" Ultra HD Blu-ray Releases Appear Online


Original Submission

 
This discussion has been archived. No new comments can be posted.
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.
(1)
  • (Score: 5, Funny) by Appalbarry on Monday October 09 2017, @12:16AM (4 children)

    by Appalbarry (66) on Monday October 09 2017, @12:16AM (#579039) Journal

    On my way over to Pirate Bay right now to look for a cracked copy of Arusoft with DeUHD [thepiratebay.org]

    €200! No way!

    • (Score: 4, Informative) by frojack on Monday October 09 2017, @12:38AM (3 children)

      by frojack (1554) Subscriber Badge on Monday October 09 2017, @12:38AM (#579044) Journal

      Had they offered it for $29.95 they would have sold millions by now.

      On the other hand if the tacked on speculation is true:

      the DeUHD developers appear to have found working keys for specific films.

      keeping the price high would be the normal thing to do.
      Maybe they stumbled into a cache of known good keys (or brute forcing them).

      It seems that what they are releasing is software that has these keys baked in, rather than one that discovers them automatically:

      According to Arusoft, there will be new movies supported every week and users can request/report new discs to be supported. Decryption of a disc takes about 4-6 hours, Arusoft tells us.

      That almost sounds like Arusoft is finding the keys, and selling keys that work on selective drives, rather than breaking the encryption on end-user drives.

      --
      No, you are mistaken. I've always had this sig.
      • (Score: 3, Interesting) by LoRdTAW on Monday October 09 2017, @02:17AM (1 child)

        by LoRdTAW (3755) on Monday October 09 2017, @02:17AM (#579064) Journal

        Maybe they stumbled into a cache of known good keys (or brute forcing them).

        What do you think all those Russian botnets for for?

        • (Score: 5, Interesting) by maxwell demon on Monday October 09 2017, @06:02AM

          by maxwell demon (1608) Subscriber Badge on Monday October 09 2017, @06:02AM (#579149) Journal

          Maybe they could make a cryptocurrency for this: The proof of work is brute-forcing a new Blu-Ray key. :-)

          --
          The Tao of math: The numbers you can count are not the real numbers.
      • (Score: 4, Interesting) by esperto123 on Monday October 09 2017, @11:31AM

        by esperto123 (4303) on Monday October 09 2017, @11:31AM (#579240)

        Or maybe this is a way to avoid extensive pirating, ironically, so they have the software to crack AACS 2.0, but use only "in house", not at the consumer end, so that way if someone uses a cracked version of their software, they may have a way to not give all the keys to it, only to the ones with a valid license.
        It would actually be a good way to "force" people to buy the license, albeit ironic none of the less.

  • (Score: 4, Informative) by takyon on Monday October 09 2017, @12:27AM

    by takyon (881) <reversethis-{gro ... s} {ta} {noykat}> on Monday October 09 2017, @12:27AM (#579042) Journal

    Doesn't seem any different from the previously cracked discs. AACS 2.0 is still not dead yet and compromised keys will be cycled out or are only specific to a small amount of movies.

    Here's the fourth disc: https://www.reddit.com/r/Piracy/comments/6i1a4e/fourth_uhd_bluray_released_is_aac_20_cracked/ [reddit.com]

    Wikipedia's article on AACS is in dire need of an update: https://en.wikipedia.org/wiki/Advanced_Access_Content_System [wikipedia.org]

    --
    [SIG] 10/28/2017: Soylent Upgrade v14 [soylentnews.org]
  • (Score: 0) by Anonymous Coward on Monday October 09 2017, @12:56AM (6 children)

    by Anonymous Coward on Monday October 09 2017, @12:56AM (#579047)

    All sorts of people are telling us how useless DRM is and is trivial to crack, yet, here we are with this Blu-Ray thing, and nobody has broken in yet? What's the dilio?? Do we really have working encryption?

    • (Score: 4, Insightful) by Anonymous Coward on Monday October 09 2017, @01:28AM (2 children)

      by Anonymous Coward on Monday October 09 2017, @01:28AM (#579050)

      4k/UHD Blu-ray seems to be in that sweet spot of too low demand and too encumbered for there to be a serious effort to break it. The commercial piracy outfits have never been too concerned with the highest quality, plenty of people are willing to by VCDs and camrips of movies in places like China, Malaysia, and the Middle East. Combine that with the fact that 4K television adoption in areas with high commercial piracy is probably abysmal, you basically have them content with standard HD rips. That leaves bored college students and a handful of researches taking a crack at AACS for now. Eventually, either there will be enough money incentive and interested talent to take it down, or these small key leaks will add up to make the scheme unworkable and they will have to try something new.

      • (Score: 5, Insightful) by LoRdTAW on Monday October 09 2017, @02:24AM

        by LoRdTAW (3755) on Monday October 09 2017, @02:24AM (#579069) Journal

        I'd say the low demand has to do with streaming. I used to download a lot of films and TV shows. After the whole thing broke where people were tracking torrents and sending out letters I stopped completely out of the fact that I don't need their content bad enough to start hiding behind VPN's. Around that same time I was splitting fios with my former landlord and found that with a few premium channels, on-demand, and a DVR, you had plenty of TV, and it was more than enough for me. Now I have just the internet along with Hulu, Netflix and Amazon Prime TV. Costs me less than $100 and I get everything I want without worrying about any legal bullshit. If I don't want the TV I just cancel it.

      • (Score: 0) by Anonymous Coward on Monday October 09 2017, @02:37AM

        by Anonymous Coward on Monday October 09 2017, @02:37AM (#579077)

        To paraphrase an exchange I saw once:

        User1: If you really think that DRM is useless, why has it taken so long to break Blu-Rays?

        User2: There is no interest in it because DVD quality is good enough for most people and, if not, "they" can get the same content from streams or other sources, or did you forget they cracked HDCP a year after it was introduced and now have the complete set of keys. To show what a difference motivation makes, look at the crack times for media with multiple sources, to those with few and you'll notice blu-ray is slower than jailbreaks is slower than games and it isn't because the latter are easier.

    • (Score: 4, Funny) by crafoo on Monday October 09 2017, @03:06AM (1 child)

      by crafoo (6639) on Monday October 09 2017, @03:06AM (#579090)

      Turns out people want low-bitrate streaming on-demand much more than high quality disks that they will only watch once anyway.

      If you leave the keys to your 1991 shitbox Oldsmobile full of burger king wrappers and cat urine, does anyone steal it?

      • (Score: 5, Touché) by Azuma Hazuki on Monday October 09 2017, @05:43AM

        by Azuma Hazuki (5086) on Monday October 09 2017, @05:43AM (#579140) Journal

        That is an oddly specific description of a car. Is it yours?

        --
        I am "that girl" your mother warned you about...
    • (Score: 0) by Anonymous Coward on Monday October 09 2017, @07:53AM

      by Anonymous Coward on Monday October 09 2017, @07:53AM (#579177)

      I don't think "working" means what you think it means.

  • (Score: -1, Troll) by Anonymous Coward on Monday October 09 2017, @10:54PM (4 children)

    by Anonymous Coward on Monday October 09 2017, @10:54PM (#579483)

    This is going to be treated as trolling, but I am hoping for some serious responses.

    There is another article around about how Kaspersky is being pulled from several stores in the U.S. Now that Cold War 2.0 has started, I have to think really hard about trusting anything that comes from Russia. Propaganda works both ways, but I trust Vlad Putin even less than Trump where it comes to spying on citizens. It is a shame. Kaspersky Rescue Disk has been in my wallet for a long time. Time to find a replacement.

    • (Score: 2) by Scrutinizer on Tuesday October 10 2017, @04:27AM (2 children)

      by Scrutinizer (6534) on Tuesday October 10 2017, @04:27AM (#579615)

      Propaganda works both ways, but I trust Vlad Putin even less than Trump where it comes to spying on citizens.

      Do we have hard [eff.org], convincing [nytimes.com] evidence [businessinsider.com] that the National Security Agency under Don Trump spies on effectively ALL USian communications?

      Do we have hard, convincing evidence that some Russian agency operating under Vlad Putin spies on effectively ALL USian communications?

      Propaganda indeed.

      • (Score: 0) by Anonymous Coward on Wednesday October 11 2017, @04:17AM (1 child)

        by Anonymous Coward on Wednesday October 11 2017, @04:17AM (#580287)

        The difference is that, while a data breach of the NSA's collected information would be harmful, the Russian government is pretty much known to be in cahoots with the same Russian hackers that sell stolen identity information on the dark web. When the NSA starts blocking prosecution of hackers on American soil, you can start calling it propaganda.

        • (Score: 0) by Anonymous Coward on Wednesday October 11 2017, @06:11PM

          by Anonymous Coward on Wednesday October 11 2017, @06:11PM (#580645)

          Yeah, no. "Identity theft" is a scare phrase used to extort fees and eyeballs from grandmas and the ignorant over a trivial matter that can be solved by paying the extortion fee to freeze all your credit profiles at Transunion, Equifax, and Experian. For the paranoid, you can pay a ~$100 yearly fee to a company who will sort out the even more rare medical and criminal "identity theft" for you should you beat the unimaginable odds and actually have someone else say that they are you.

          If you're seriously worried about "identity theft", then "parallel reconstruction" by US law enforcement agencies is something that will ensure your pants are permanently brown.

          To claim that Vlad is a bigger threat to Americans' privacy than Don is is laughable. We KNOW the NSA is spying on all USians. To claim that Vlad is more of a privacy threat to USians than Don is, you're going to have to show hard evidence that some Russian agency is spying on, say, 110% of USians' communications.

          A simpler explaination is just that you've drunk the "Russia, Russia, Russia" gov-corp propaganda narrative.

    • (Score: 0) by Anonymous Coward on Tuesday October 10 2017, @06:11AM

      by Anonymous Coward on Tuesday October 10 2017, @06:11AM (#579667)

      Is the U.S. sending NSA and CIA nerds to infiltrate open source projects and plant vulnerabilities? Are you paying for it?

(1)