Please create an account to participate in the Slashdot moderation system

 



Forgot your password?
typodupeerror
×
Piracy DRM Movies Technology

A Look at How Movies and Shows From Netflix and Amazon Prime Video Are Pirated (torrentfreak.com) 219

News blog TorrentFreak spoke with a member of piracy group "The Scene" to understand how they obtain -- or rip -- movies and shows from sources such as Netflix and Amazon Prime Video. The technique these people use is different from hardware capture cards or software-based 'capping' tools. From the report: "Content for WEB releases are obtained by downloading the source content. Whenever you stream a video online, you are downloading chunks of a video file to your computer. Sceners simply save that content and attempt to decrypt it for non-DRM playback later," the source said. When accessing the content, legitimate premium accounts are used, often paid for using prepaid credit cards supported by bogus identities. It takes just a few minutes to download a video file since they're served by CDNs with gigabits of bandwidth.

"Once files are downloaded from the streaming platform, however, they are encrypted in the .mp4 container. Attempting to view such video will usually result in a blank screen and nothing else -- streams from these sites are protected by DRM. The most common, and hard to crack DRM is called Widevine. The way the Scene handles WEB-releases is by using specialized tools coded by The Scene, for The Scene. These tools are extremely private, and only a handful of people in the world have access to the latest version(s)," source noted. "Without these tools, releasing Widevine content is extremely difficult, if not impossible for most. The tools work by downloading the encrypted video stream from the streaming site, and reverse engineering the encryption." Our contact says that decryption is a surprisingly quick process, taking just a few minutes. After starting with a large raw file, the finalized version ready for release is around 30% smaller, around 7GB for a 1080p file.

This discussion has been archived. No new comments can be posted.

A Look at How Movies and Shows From Netflix and Amazon Prime Video Are Pirated

Comments Filter:
  • by 93 Escort Wagon ( 326346 ) on Monday July 08, 2019 @01:18PM (#58891698)

    I have to wonder if this is really lossless decryption (or is truly decryption at all). I remember, back in the days of Requiem, decrypted Apple mp4 files were basically the same size as the encrypted original.

    • The article isn't clear at all on that point, and it may be a misreporting, but sometimes encryption algorithms pad each packet with garbage bytes at the end to make sure each packet is the same length, to make it harder to decrypt.
    • I would expect the decrypted video to be significantly smaller IF the encryption is strong. The reason for that is that compression and strong encryption don't play well together.

      You can decrypt it, then zip it, and it should be smaller.

      Encryption produces what appears to be random bytes.
      Compression takes advantage of redundancy, patterns in the data. With the redundancy removed, you can't very well compress data after it is encrypted.

      If you compress the data before encrypting it, you've probably created

      • by nmb3000 ( 741169 ) on Monday July 08, 2019 @08:05PM (#58893790) Journal

        I would expect the decrypted video to be significantly smaller IF the encryption is strong. The reason for that is that compression and strong encryption don't play well together.

        This is not true. Ignoring some inconsequential overhead such as headers, padding, IV, etc (likely less than a kilobyte), an encrypted compressed video (or photo, etc) file will be essentially the same size as the source. Encryption happens after compression and there's no correlation between the reduction in entropy via compression and the transformation applied via encryption. Try it yourself by encrypting compressed files like pictures, zip files, or a video.

        The only thing that comes to mind about the reduction in size is that the DRM needs to support streaming and seeking which will cause increased overhead. At some level they are probably breaking the video up into many tiny chunks and encrypting them in a way that supports random access without downloading the entire file. Though a 30% increase just for this seems pretty crazy.

        However 30% is about what you'd see if you base-64 encoded the content before or after encrypting it.... though I have no idea why you'd ever consider doing that for video (unless it was by accident [php.net], lolphp).

        • > Encryption happens after compression

          If you encrypt after compression, you're nearly guaranteed to have an oracle. That's Poodle, ROBOT, Bleichenbacher, BREACH, CRIME, etc. These are all caused by compressing before encrypting. If you compress first, you no longer have strong encryption. You have either

          A. Encryption that can be cracked using readily known methods such as these listed above

          B. Encryption which can probably be broken by a slight variation on the above. All the the vulnerabilities like Blei

          • If you encrypt after compression, you're nearly guaranteed to have an oracle

            If the quality of your encrypted file depends at all on the content of the source file, then your encryption algorithm is shit. The one and only goal of encryption is to produce a file that is indistinguishable from random noise, regardless of the source data.

            • > The one and only goal of encryption is to produce a file that is indistinguishable from random noise, regardless of the source data.

              Yes that is your goal. And compression takes advantage of redundancy and patterns, meaning encrypted data shouldn't compress well, right? Is that clear enough, that you can't compress AFTER encryption?

              So now we consider lossless compression first. To make this easy for everyone to follow, let's use the simplest compression, RLE. Suppose our uncompressed, unencryp

    • by AmiMoJo ( 196126 )

      It's probably a slightly garbled message. Maybe they can't copy the audio (has TrueHD or whatever it's called been cracked?) and have to re-compress the decoded PCM data.

      Also with Netflix there are sometimes very long extended credits for all the translation work into a dozen languages. Maybe they cut those off the end.

      My Kodi box (Pi 3) can't do H.265 or 4k so I haven't looked at HDR stuff, but do their releases include it? My understanding is that the video can play back normally without the HDR data for

  • by Merk42 ( 1906718 ) on Monday July 08, 2019 @01:26PM (#58891758)
    ...and for free!
  • Which is why I can't even take a screen clip when I freeze frame? *grumble*

    • by DarkOx ( 621550 )

      Because if you could someone would just automate the freeze snap process, and capturing audio thru the analog hole will always be a relative trivial exercise with relatively good quality possible to achieve.

      • by AvitarX ( 172628 )

        I guess if they get decent encryption that matters, but why would anyone want to recompress 60 screenshots a second if they can just download and decrypt?

    • by atrex ( 4811433 )
      Odd, the windows snipping tool seems to have no problem screen capping an image out of a Netflix stream, or at least part of one.

      Print screen I think usually has problems grabbing content being displayed via DirectShow/DirectDraw or whatever API the players use.
      • Re: (Score:3, Interesting)

        by i41 ( 804842 )
        Screen capture tools copy the contents of screen memory. I mean the part of the video memory the GPU continuously sends to the monitor. The video decoding process *may* store images in screen memory, by first writing each decoded video frame in YUV format into an off-screen buffer, then instructing the GPU to render this image as a texture into screen memory. This is lossy because rendering converts YUV to RGB. Another option is an overlay. Here the GPU reads pixels from screen memory and the off-screen buf
  • I may completely off here, but is there high demand for pirated Netflix shows? At 10-15$ a month for access to Netflix there really are many people pirating these shows? If you can afford decent tech to download torrents and watch these shows in good quality the price point is probably not a barrier. So do people really feel like $15 a month is way to high?
    • by saider ( 177166 ) on Monday July 08, 2019 @01:34PM (#58891832)

      They are simply time shifting. When Netflix yanks the content, they can still view it.

      • My kids started watching the Men In Black series on Netflix. 1/2 way through the 1st movie, Netflix pulled them all. Gone.
        Did I go download them?

        No. I went on eBay and looked for the movies. Hmmm, surprisingly not affordable. Then I went on Amazon and bought the trilogy on DVD for $7 shipped to my door. I ripped them and put them on my media server.

        Yeah, I could have gotten them faster by downloading, and for cheaper. But if there are reasonable paid options, I will use them.
        (I have even downloaded m

    • by Kernel Kurtz ( 182424 ) on Monday July 08, 2019 @01:38PM (#58891864)

      I may completely off here, but is there high demand for pirated Netflix shows? At 10-15$ a month for access to Netflix there really are many people pirating these shows? If you can afford decent tech to download torrents and watch these shows in good quality the price point is probably not a barrier. So do people really feel like $15 a month is way to high?

      Sure, $15 for Netflix. More $ for Prime. More for the upcoming Disney service. And it's all region locked - what we get on Netflix in Canada is not the same as the US which is not the same as any other country. So yes, there is a demand, and it will only increase as the streaming services become more and more fragmented.

      • So what did you expect exactly? That you could get all the content you want for $10/month?

        Piracy will always be cheaper. Fragmentation is a good thing. No fragmentation would mean Netflix, or another, would have the monopoly.

        • by mhotchin ( 791085 ) <slashdot&hotchin,net> on Monday July 08, 2019 @02:28PM (#58892276)

          Fragmentation is only a good thing if it leads to meaningful competition. That is manifestly *not* the case here, the market is fragmenting into a set of markets with exclusive content.

          There is no way that the consumer benefits from this kind of fragmentation.

          • I disagree. The consumer would be in an even worse situation if Netflix (or any other) had all the content.

            The best thing for the consumer would be a 100% fragmented market. Every TV show / movie producer would offer its content directly, unbundled. We would have thousands of different providers with exclusive content. But we would only pay for what we watch.
            Of course we would need access platforms / applications able to show us what's available from different providers, but this is not a hard problem to so

            • It's a nice idea, but you didn't consider the overheads - it's not practical for a customer to deal with a hundred different companies each with their own service, their own payment, their own app, their own compatibility needs. Simple convenience means there is a need for an aggregator in between. That's what the entire retail sector exists for - the convenient middle-man between wholesalers and consumers. The retailers for online media are netflix, Amazon, and iTunes - but competition is hampered by exclu

              • As I said it's not a hard problem to solve. We could have an open protocol and dozens of different applications (some would be open source) would access the same directory of content. You would see the price on each show, and would purchase from your credit card when you start watching. Or they could offer the first episode for free if they want.
                We don't need Netflix as a middle man. But if we do, then we must hope for as much fragmentation as possible.

            • by sjames ( 1099 )

              Sure, but the consumer would be vastly better off if instead of a bunch of fragmented mini-monopolies, the same content was available on multiple services. Exclusives are bad for the market.

          • No fragmentation was exactly what you had with the cable / satellite co. No exclusive content either. Both providers offered pretty much all the content.

          • Comment removed based on user account deletion
        • by Bert64 ( 520050 )

          Fragmentation is bad, competition is good...
          Having multiple services offering the same content would be good for competition.
          Having each service offer different content is a mess.

          • Let say Netflix had all the content. And Amazon too. There would be no exclusivity. What do you think the monthly price would be? You are very naive if you think it would be anything close to the current $15/month or so.

      • what we get on Netflix in Canada is not the same as the US

        I actually like this - it means that if I go on a trip to Europe or the US there is always something new I have not seen before to watch on Netflix. It is not region-locking like the old DVDs - your subscription is worldwide and lets you watch the content available in whatever country you happen to be in when you watch it. Not only that but because you can now download the content while there and watch it for the week after you get back home.

        I actually did that on a recent business trip to Europe. My wi

        • I actually like this - it means that if I go on a trip to Europe or the US there is always something new I have not seen before to watch on Netflix.

          OK, perhaps it was originally intended as a feature for regular intercontinental travelers. But that would still be not most people.

          • You do not need intercontinental travel: Canada to the US is enough and it's hard to find many Canadians who have not been south of the border even when you live as far north as Edmonton.
      • It always existed. Does not matter how cheap it was. In the beginning of streaming all content providers (ABC, CBS) used to stream freely with ads all their episodes the next day after broadcasting. That's how I got hooked on Lost in season 2 after two years if not watching anything on television. TV was relatively cheap in 2006 but I still prefered free streaming.

        It's the combination of realization that TV and movies are junk and paying event a cent for it is humiliating. It's the sense of over produced ma

    • At 10-15$ a month for access to Netflix there really are many people pirating these shows?

      I'm not a torrent-guy, but I assume there is for content that is regionally restricted. For example, in the USA Star Trek Discovery is on CBS-All Access. Up here in Canada, it's on SPACE channel (and streaming in SPACE on-demand). Rest of the world it's on Netflix. So I assume there's some piracy for programming like that.

    • 15$ might be to much for a student. But the main problem is: Paying 15$/month only works if you live in USA.

      For the rest of the world, a huge part of the content you can get on a USA Netflix account is simply not available on any kind of streaming platform.

      Here are for example, my personal list of what I would like to watch, but which is neither available at HBO or Netflix.

      A star is born
      Margin call
      Limitless
      The founder
      Money ball

      So only solution is buying dvd's and that get expensive.

      • by cowdung ( 702933 )

        I've also found the opposite to be true. I remember being able to watch shows overseas that weren't available in Netflix USA. Examples: Dexter (way back when), and Happy (right now.. its available on Amazon Prime for an extra cost, but on Netflix in Latin America its free).

    • by morcego ( 260031 ) on Monday July 08, 2019 @02:05PM (#58892116)

      The demand for pirated content increases as new streaming services are released, competing with Netflix.
      When you have to pay 10-15$/month for 7+ difference services, piracy numbers skyrocket.

      There is plenty of empirical data published that back this assertion. Netflix was, at a time, one of the greatest piracy deterrents. But as companies got greedy and everyone started having their own streaming service, the piracy numbers started to go up again.

    • Netflix stopped working on my Android box because my vendor didn't pay some license to Google, so... yes.
    • I may completely off here, but is there high demand for pirated Netflix shows?

      Almost certainly not for the very reasons you quote but this is rapidly coming to an end and the streaming market is going to fragment with lots of players like Disney, CBS etc. all wanting their $10-15/month from you to see their content. When that happens I strongly suspect that all the piracy that Netflix very effectively killed is going to come roaring back because nobody is going to want to go back to the dark days of cable and spend $50-100/month to get the same content spread over multiple sites mak

    • by Bert64 ( 520050 )

      Netflix has different content in different countries...
      Netflix is not available in all countries...
      Some people are on metered or partially metered (ie meter during the day but free at night) connections which make streaming impractical.
      Some people are on slow or unreliable connections which make streaming impractical.

  • by jellomizer ( 103300 ) on Monday July 08, 2019 @01:48PM (#58891944)

    Today's TV's are all digital. Why can't one just tap into the LCD matrix display, and the digital audio data before it is sent to the DA converter. Save the signals and save onto a separate medium.

    No matter what DRM people do, it will need to be decrypted and sent as standardized signal to these devices that we get our normal output.

    • by phantomfive ( 622387 ) on Monday July 08, 2019 @03:02PM (#58892502) Journal

      Today's TV's are all digital. Why can't one just tap into the LCD matrix display

      I worked for a company that did exactly that. It takes some hardware expertise, though.

      • by Frederic54 ( 3788 ) on Monday July 08, 2019 @03:35PM (#58892696) Journal

        Same, we bought OTS TV like Samsung or LG, disassemble them, took the signal directly from their t-con, the flat ribbon, it's LVDS signal, put a FPGA with some RAM and tada, we grabbed the frame of what was displayed on the LCD matrix... as the signal is coming from HDMI to the TV controller card, everything pass HDCP, is properly decoded and all, and the raw 1920x1080 is sent to the matrix.

        • Oh, that's a good use for an FPGA.
        • by jabuzz ( 182671 )

          HDCP 1.x is a publically busted flush as the master key has been reverse engineered and widely distributed since 2010 and thus all 1080p content is essentially unprotected.

          You can get devices that just tap into the HDCP protected HDMI stream for not very much money on eBay/Amazon and write the stream out to a USB connected device why on earth would you bother disassembling a TV?

        • by AmiMoJo ( 196126 )

          Seems like a hell of a lot of work when you could just buy a $10 HDMI splitter that happens to also strip HDCP: https://www.tweaking4all.com/h... [tweaking4all.com]

          If all you want to do is rip the raw, uncompressed video signal you can just use a basic HDMI capture card with one of those.

    • Because that LCD matrix display is fed through a LVDS link running at a very high speed, if you're lucky. You can tap it in theory - but you'll need a logic analyser capable of running at such speeds, a custom circuit board, and experts in high-frequency digital signals engineering, reverse engineering and FPGA development. It's doable, yes - but it's so much trouble that cracking the encryption is likely to be easier. After all, the key must be around somewhere in order to view the content legitimately - a

      • For my job, I regularly do a "ram tap" with FPGA with DDR interfaces in between the ram chip and a SoC.

        Not much a problem at all, and is much easier than JTAG for needs of getting things out of ram, or stopping execution during access to a specific address.

        TrustZoned SoC often come with some kind of JTAG scrambling if TZ was ever ran after boot, and that itself made such adhoc tap boards much more popular.

        I have no doubt that whomever that PLAYREADY group is, they didn't have to drill the SoC itself, but mu

    • by KalvinB ( 205500 )

      1920 x 1080 pixels per frame x 3 bytes per pixel x 30 frames per second / 1024 / 1024 = 178 MBytes per second of video data is being put out to the screen. For a 1.5 hour movie that's 938GB of raw data.

      The audio you can record out of the speaker wires is probably "good enough" but it's going to be degraded quality vs digital.

      It could probably be done, but it's not a simple task. You'd have to reverse engineer the signal that populates the screen with pixels to create a series of still images and then crea

    • by Z80a ( 971949 )

      If you gonna recompress the picture, just use elgato and some HDCP decrypter (there are several).
      What the pirates are doing here is trying to not have to recompress and give you a 1:1 copy.

    • by idji ( 984038 )
      This gives them raw data, too big for streaming - they would need to recompress it. it's better and faster to decrypt the original compressed video.
    • by AmiMoJo ( 196126 )

      People do that, although it's generally easier to get a HDMI splitter and tap into that. The splitters work by having a receiver chip similar to what you find in a TV. It strips the encryption and other protections, then passes that to multiple HDMI encoder chips that add it back in again. You can tap the unprotected signal with a few wires.

      There is a Chinese company that makes HDMI "downgrade" devices that basically just remove the encryption. Netflix buys them to assist with ripping media for their stream

  • If there is a show or film that you like, you may not be able to own your own, local copy. In the early days, if you liked a show/program, you could always buy the VHS, DVD, Blu Ray, and it sometimes came with cool booklets and extras. Under a streaming model, whatever you like is subject to removal at any time and you have no control over this. While streaming services may be convenient, they are not always practical. Users would like to archive some programming if s/he likes it or even needs for research
  • The video quality is substantially higher with Blu-Ray, 25-50 GB per movie instead of 7 GB. And it's been cracked so ripping is a lot easier. it seems you'd have to resort to decrypting streams only for Netflix- or Amazon-exclusive content (which granted may include a bunch of really old stuff which was never released on Blu-Ray).
    • Most people don't care that much about Blu-ray quality for a pirated film. I only have a standard HD tv, so 1080p works well for me.
      And until someone creates a spotify like movie service I am going to continue downloading everything.

    • Availability. A lot of shows are out on Netflix before their blu-ray release, and in piracy there is much prestige in coming first.

  • How do they make money ripping content and hosting torrents? Is it really worth it?

  • I assumed they were using either screencap software or HDCP-stripping HDMI passthrough devices. Direct decryption should do a better job of preserving video quality.

  • P2P site gets trolled by scene.
    News at 4:20!

    I cant believe I actually read that shit, once again LOL.

  • I'm interested in how this works to be honest, and it has nothing to do with Netflix.

    Odds are once I've watched a show on Netflix, it's unlikely I'll ever watch it again.

    However !

    I do have subscriptions to various sites that produce tutorials on how to use some very complicated software that you are not going to learn on your own. Once upon a time, these sites provided physical media ( of which I have an entire library of for previous versions of the software ) but have since switched to a streaming / subs

Philosophy: A route of many roads leading from nowhere to nothing. -- Ambrose Bierce

Working...