V1 Unpatched Switch

[Amilcar Labrosse]

Becausethere are lots of clones of these modchips, and some have had compatibility issues in the past, you might want to tread a bit carefully. Specifically, check with the vendor that you buy a chip that works with your specific model. In case of doubt, head over to GBATemp for help.

Hacking a Nintendo Switch in 2023 is much cheaper in 2023 than it was in 2022/2021. I remain convinced that buying an older, unpatched model, is the easiest way to hack the Nintendo Switch, but if you have the right soldering skills, installing a modchip is now an affordable option.

Hi basically I have this unpatched switch and it has been updated to the latest software version 10.0.2 without me knowing, can I still get homebrew on it or does the latest updates prevent this from being hacked? Thanks

@theSLAYER Thank you for replying, I checked the switch guide you just posted to check my serial number and I also checked the serial number on another website to double check and as you can see in the picture I attached it seems mine is defiantly the unpatched switch, and will work using the RCM method (hopefully).

I was unsure if homebrew would still work on my switch because it is now on the latest software update, I found a youtube video showing it will work using the latest atmosphere version which I have just downloaded onto my pc. I will use caution, I have another "patched" switch which I use online etc, my unpatched one is for pkhex only nothing else, so will be offline and in airplane mode all the time for extra precaution.

This is probably not even possible but here goes. Is there anyway to identify a port on a switch into which nothing is plugged in (i.e. not even a patch cable)? I know a port will show not connected if no device is plugged in but is there anyway to tell if there is not even a patch cable plugged into the port.

To see if you don't have a patch cable connected to a port is not possible, but depending what you would like to do you can check that interface's statistics to see if there was any traffic going over it If there was nothing going over the last few months you can be sure that nothing is connected to it.

You can probably get $100 more than whatever you could normally sell a brand new Switch for, minus whatever wear and tear it has. But if it's as-new/good then you could probably get $550 for it easy. Or you could mod it yourself if you wanted. Don't update it, it'll burn the update fuses and whoever buys it might want to keep them intact. It's unpatched for certain anyway but the fuses are nice to have.

TBH I don't think a moddable Switch is really worth that much more. You can't mod it permanently and with all features intact like you can with a 3DS (where you can play online quite happily). It is a temporary mod which is a pain to switch on again if you turn the machine off, and you can't do anything online (where there are some really good online games). I think it will be worth more in the future if there becomes a permanent mod available that allows you to play online, IF unpatched models are required.

Also don't sell it "modded". The buyer is still going to need a jack and if you set it up so it doesn't need one then the buyer might not know what to do if they accidentally turn off the machine and it reboots to a black screen. Better they do it themselves since they will have to do the same thing every time they turn the machine off and on.

@Quantumcat: Right. Plus a license for SX OS if you only buy the SX Gear which doesn't have the license built in. Ironic that SX OS requires a license to work. But a $40 license vs wasting hours and hours using a free version, it's a no brainer. Plus you get extra features compared to the free version, like XCI loading.

@AustriaBargain: Hours and hours? It takes like 2 minutes tops. I think if you pay for something like that you're a chump (until they have a version that works with the Switch lite or patched Switches).

If willing to pay for the convenience factor of not needing a computer, better to get a dragon injector.

@Quantumcat: I think all up you can except to face hours of extra time spent if you don't just pay for SX OS. And it's not just setup, there's other things you'll need to do down the line where you'll save time by choosing SX OS. You'll spend less time looking for workarounds.

@AustriaBargain: Like what?

Not including game download time, I've probably spent less than 2 hours on reading, discussing, and downloading the files.

SX OS gets up to date with new firmwares much slower as they take time to steal the developments made by open source devs and incorporate them into their menu.

In February I sold an early hackable switch for a family member for $400. That was before news that newer unpatched consoles could also be hacked through a mod chip and before the Switch shortages. The market is obviously so different now that $400 might seem too low, but the family member made money on that switch and let them buy the Animal Crossing version.

Is it really a big deal, though? Unless OP or the end user was planning to dump the NAND, run emuNAND, and only update the latter, then you don't lose all that much by updating. Especially considering a tonne of games wouldn't have run on 4.1.0

You can always update your firmware (SysNAND or emuNAND) without burning fuses using Choi from 4.1.0 to latest, allowing you to run the latest version while allowing you to boot simply without dongle and jig.

Cisco recently released details of CVE-2017-3881 which is extremely serious. The issue is found in Cisco switches using Cisco IOS and Cisco IOS XE software. The exploit targets the Cisco Cluster Management Protocol and (CMP) of switches with Telnet active. It can allow the remote reboot, reload and remote execution of commands allowing for a malformed request to take over a switch. Cisco is accustomed to finding and patching security issues, but this one was disclosed withotu an immediate patch so we suspect it will take engineering to fix. If you run Cisco switches, you need to be aware of this vulnerability.

A vulnerability in the Cisco Cluster Management Protocol (CMP) processing code in Cisco IOS and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a reload of an affected device or remotely execute code with elevated privileges.

An attacker could exploit this vulnerability by sending malformed CMP-specific Telnet options while establishing a Telnet session with an affected Cisco device configured to accept Telnet connections. An exploit could allow an attacker to execute arbitrary code and obtain full control of the device or cause a reload of the affected device.

The switch --print-media-type, is not support using unpatched qt, and will be ignored.The switch --header-html, is not support using unpatched qt, and will be ignored.The switch --footer-html, is not support using unpatched qt, and will be ignored.The switch --disable-smart-shrinking, is not support using unpatched qt, and will be ignored.QStandardPaths: XDG_RUNTIME_DIR not set, defaulting to '/tmp/runtime-erpnext'

"This vulnerability allows a remote, unauthenticated attacker to create an account on an affected system with privilege level 15 access," Cisco said in a Monday advisory. "The attacker can then use that account to gain control of the affected system."

The problem impacts both physical and virtual devices running Cisco IOS XE software that also have the HTTP or HTTPS server feature enabled. As a mitigation, it's recommended to disable the HTTP server feature on internet-facing systems.

The networking equipment major said it discovered the problem after it detected malicious activity on an unidentified customer device as early as September 18, 2023, in which an authorized user created a local user account under the username "cisco_tac_admin" from a suspicious IP address. The unusual activity ended on October 1, 2023.

This is said to have been followed by a series of actions that culminated in the deployment of a Lua-based implant that allows the actor to execute arbitrary commands at the system level or IOS level.

The installation of the implant is achieved by exploiting CVE-2021-1435, a now-patched flaw impacting the web UI of Cisco IOS XE Software, as well as an as-yet-undetermined mechanism in cases where the system is fully patched against CVE-2021-1435.

"For the implant to become active, the web server must be restarted; in at least one observed case the server was not restarted so the implant never became active despite being installed," Cisco said.

The backdoor, saved under the file path "/usr/binos/conf/nginx-conf/cisco_service.conf," is not persistent, meaning it will not survive a device reboot. That said, the rogue privileged accounts that are created continue to remain active.

"The first cluster was possibly the actor's initial attempt and testing their code, while the October activity seems to show the actor expanding their operation to include establishing persistent access via deployment of the implant," the company noted.

In April 2023, U.K. and U.S. cybersecurity and intelligence agencies alerted of state-sponsored campaigns targeting global network infrastructure, with Cisco stating that Route/switch devices are a "perfect target for an adversary looking to be both quiet and have access to important intelligence capability as well as a foothold in a preferred network."

Threat actors have exploited CVE-2023-20198 to compromise and infect thousands of Cisco IOS XE devices with malicious implants, according to a new report from VulnCheck, which has released a scanner to detect the implant on affected devices.

"This is a bad situation, as privileged access on the IOS XE likely allows attackers to monitor network traffic, pivot into protected networks, and perform any number of man-in-the-middle attacks," security researcher Jacob Baines said.

Attack surface management firm Censys, in its own analysis, said it identified 41,983 devices that showed signs of compromise and appear to have the backdoor installed. A majority of the infections are in the U.S., followed by the Philippines, Mexico, Chile, India, Peru, Thailand, Brazil, Singapore, and Australia.

3a8082e126