back to article Hack Nintendo's alarm clock to show cat pics? Let's-a-go!

A hacker who uses the handle GaryOderNichts has found a way to break into Nintendo's recently launched Alarmo clock, and run code on the device. Nintendo bills Alarmo as a way to "make waking up fun" – a tall order. The clock looks like a cartoony take on a vintage, red round alarm clock, but with an interactive screen. …

  1. ForthIsNotDead
    Boffin

    Gary is an interesting guy. He develops TI-99/4A software for fun! He's still active in the TI-99/4A community.

    Nerd icon. Obvs.

    1. Anonymous Coward
      Anonymous Coward

      Not him.

  2. Mentat74
    Thumb Down

    Using AES-128 encryption...

    Just to 'protect' a bunch of crappy pictures and sounds from videogames.

    What a waste of resources...

    1. Anonymous Coward
      Anonymous Coward

      Re: Using AES-128 encryption...

      The first ten million years were the worst, and the second ten million years, they were the worst too. The third ten million I didn’t enjoy at all. After that I went into a bit of a decline.

      1. O'Reg Inalsin

        Re: Using AES-128 encryption...

        Can we assume the key was a really dumb password? "Let's use this for development and change it for release", but they never did change it because, who would ever want to hack an alarm clock?

        1. Anonymous Anti-ANC South African Coward Silver badge
          Happy

          Re: Using AES-128 encryption...

          Password = MarioLovesPeach

          did I guess it?

    2. Gene Cash Silver badge

      Re: Using AES-128 encryption...

      This IS Nintendo after all... they're the ones suing people giving them free advertisement on YouTube by playing their games.

      Nintendo are actually a level of asshole above Sony and Google. Nintendo seems to actively hate people using their products.

      1. Anonymous Coward
        Anonymous Coward

        Re: Using AES-128 encryption...

        That's only half the story though isn't it. The people they are suing are using ROMS. ROMS are copies of games and there is no way to determine if it's a legit own backup. I looked it up and the first website I found on the matter talked about "cartridge degradation" as the reason why it's bad. Cartridge degradation? Is that even as thing? I have cartridges that still work that are not much older than me and they also fail to mention downloaded content.

        Nintendo are very gung ho on their IP though to be fair. I certainly wouldn't put them anywhere near or let alone a level above Sony (DRM) and Google (Where do I even start?

      2. CowHorseFrog Silver badge

        Re: Using AES-128 encryption...

        Notice its Nintendo of AMerica that does all the suing...

        I never they even bother ?

        So they think someone watching an unofficial review is bad, but what does it say about the world watching them sue these people in the first place ?

    3. Alan W. Rateliff, II
      Thumb Up

      Re: Using AES-128 encryption...

      I thought that at first, as well. I suppose it is a cheap mechanism to prove it is trying to protect its IP. Which is what Ninten-do.

      I am more disappointed there was no message to hackers/crackers in the firmware as was often done in the olden days.

      1. DJV Silver badge

        Re: message to hackers/crackers

        I wrote some software for the Commodore 64 back in the 1980s for a little local company and decided to attempt to protect the disk version from being copied. I remember putting a deliberately corrupt sector on the disk which the loader could check for. If it wasn't found to be corrupted, the loader would then bail out of running the software there and then (probably with a disk read error message). The rest of the protection was (if I remember correctly) by EX-ORing the stream with string sequences one of which was a message that read something like: "THE ENCRYPTION IS 55 LEVELS DEEP" just to put the hackers off. Of course, it wasn't 55 levels deep - if it had been, there probably wouldn't have been room on the disk for the program itself! Fun times!

  3. Anonymous Coward
    Anonymous Coward

    Is bypassing the encryption even necessary? Given that this device uses a STM32H730ZBI6 microcontroller, couldn't arbitrary firmware just be flashed over the top without worrying about protection?

    I'd love to get binwalk going over the firmware image, but there doesn't appear to be a direct download for it anywhere.

    1. Richard 12 Silver badge

      The user code in the secure area is doing something, so it's likely that wouldn't work.

      Also, where's the fun in that?

      1. Anonymous Coward
        Anonymous Coward

        Sure, but if you flash your own firmware to it (likely possible via Arduino IDE) who cares about the encrypted enclave? The encrypted area is likely where additional binaries exist for poking and prodding the chips to get them to do stuff...it's likely a lot less important than the encryption would imply and likely exists to prevent Chinese factories copying the device...not that it would stop them anyway.

    2. Anonymous Coward
      Anonymous Coward

      Couldn't arbitrary firmware just be flashed..?

      For $100, you're already in the ballpark of building a device of your own choosing. And if you just want a cat clock, you can order mechanical clocks with custom artwork for a very small amount of money.

      This one definitely sounds like a desperate attempt to justify an impulse purchase that ended in buyer's remorse.

      1. Anonymous Coward
        Anonymous Coward

        Re: Couldn't arbitrary firmware just be flashed..?

        For $100 you're more than in the ballpark. An ESP32 with a built in screen and a 3D printed case costs less than $20 and it'll be much more capable.

        You can never feel remorse for buying something that is hackable.

  4. Homo.Sapien.Floridanus

    I bet Koopa wasn’t happy when he heard you got access to the shell.

    1. CowHorseFrog Silver badge

      to do what exactly ?

      ls ?

  5. trevorde Silver badge

    Next logical step

    Someone porting Doom to Alarmo; then Linux

    1. Roj Blake Silver badge

      Re: Next logical step

      But what about Crysis? Can it run that?

      1. David 132 Silver badge
        Coat

        Re: Next logical step

        It's an alarm clock, so should be capable of TikTok.

    2. A Non e-mouse Silver badge

      Re: Next logical step

      Someone has ported Doom to it.

      Inevitable.

  6. heyrick Silver badge

    A cat picture from wiki?

    The shame.

    When I need a cute cat picture, I get as far as opening the front door when a turbo charged cat flies through the air towards me (she's an outdoor cat, far too hyper to be trusted inside - what she did to the ethernet cables was...difficult to imagine possible).

    1. Brave Coward

      Re: A cat picture from wiki?

      If your cables were cat5, not so much glory for her. Defeating five non shielded enemies isn't such a thing.

      If they where cat8, on the other hand...

    2. Anonymous Coward
      Anonymous Coward

      Re: A cat picture from wiki?

      Simple answer ... buy some armoured cable suitable for outdoor use.

      That WILL be cat proof but the retribution for defeating your cat may be worse !!!

      [And there WILL be retribution ... its a cat 'thing' for challenging the hierarchy ... AKA 'know your place, person who feeds me']

      :)

      1. Anonymous Coward
        Anonymous Coward

        Re: cat retribution

        Never piss off a cat, they will start thinking outside the box.

        1. Mast1

          Re: cat retribution

          "Thinking outside the box...."

          Ours just goes for stinking outside the box.

          Itonly puts one type allowed inside the box, the rest goes somewhere else. Fortunately we have a tiled floor, so easy to clean.

    3. Grinning Bandicoot

      Re: A cat picture from wiki?

      The cat is helping you. You get upset, move around in an awkward manner chasing problems; meanwhile, the heart rate rises as does the air exchange rate - all is called exercise. The cat can watch for hours.

  7. mostly average
    Mushroom

    There's an easier way

    To get sued into oblivion by Nintendo. Many, actually. But few as interesting as this.

    1. Dan 55 Silver badge

      Re: There's an easier way

      I'd like to see the key published for shits and giggles. Would Nintendo sue? Would they issue take-down requests? Try and change the key in a firmware update?

      I'd be a complete waste of time and money but I'm sure they'd do it.

      1. heyrick Silver badge
        Happy

        Re: There's an easier way

        What, you mean this?

        sha256(alarmo_content_key)=47238c47d21165fdb2f9a26c128e4b620a39139f6514588f5edb8a16397a9201

  8. Anonymous Coward
    Anonymous Coward

    OK I clicked on the cat pic link

    Didn’t expect a link to X.

    Now I feel dirty.

    1. Anonymous Coward
      Anonymous Coward

      Re: OK I clicked on the cat pic link

      Scrub the mouse with bleach and the finger you clicked with !!!

      Psychological help will be possible if you need it !!!

      P.S.

      Now you know not to click on random things ... like your mother told you !!!

      :)

  9. John Smith 19 Gold badge
    WTF?

    " exploited a vulnerability in the cryptographic processor's interface"

    Ooooops.

    There might be quite large implications here.

    What else uses this (or similar) hardware.

    Maybe nothing.

    Maybe....

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Other stories you might like