• conciselyverbose
    link
    fedilink
    151 year ago

    A new whitepaper published August 24th to Trend Micro explains how the perfectly legitimate driver mhyprot2.sys was used, absent any other parts of Genshin Impact, to gain root access to a system.

    I think maybe you should re-evaluate your definition of “perfectly legitimate”.

    • @[email protected]
      link
      fedilink
      2
      edit-2
      1 year ago

      Let’s punch a huge hole in the OS and go from there. That sounds perfectly reasonable.

      I could maybe somehow understand it, if it would bring you absolute safety from cheaters, the funniest part about this is, the cheat devs are still above them, so just throw in the towel of trying to destroy the safety of legitimate players devices if you are still losing anyway.

    • @[email protected]
      link
      fedilink
      41 year ago

      Just like the Mafioso “perfectly legitimate businessmen” who offer fire insurance and personal injury insurance door to door, after dark. Be a real shame if something were to happen.

      • conciselyverbose
        link
        fedilink
        71 year ago

        I can understand that bugs happen. It’s absolutely possible for well intentioned software to have a fatal flaw that leads to catastrophic security breaches.

        But there’s no scenario where a game having that access is defensible. It’s gross overreach that can’t possibly be in good faith and you deserve all the hate you get if anything bad happens.

        • devtimiM
          link
          fedilink
          English
          21 year ago

          The way people who cheat talk about input modifier devices leaves a bad taste in my mouth, so I can understand why a driver level system was considered.

          Cheaters in online games really are the worst type of people because they feel entitled to ruin other peoples games. It’s one thing to “level up” your solo experience. It’s a different thing to intend to ruin someone else’s.

          • conciselyverbose
            link
            fedilink
            2
            edit-2
            1 year ago

            Even if we pretended it was possible for their anticheat to work (it isn’t), it’s pure unredeemable evil to think it’s possible for there to be a scenario you’re entitled to that access.

            If 50 percent of players were cheaters without that access and literally no one ever cheated again with it, you would be a monster to consider using it. It should be a criminal offense with mandatory jail time to the CEO and board of directors for every single computer it’s installed on.

            • kadu
              link
              fedilink
              11 year ago

              possible for their anticheat to work (it isn’t)

              Except it is. Valorant is a competitive shooter that rarely gets plagued by cheaters. Unlike Counter Strike, were cheats were even used during actual professional matches, Valorant is mostly free of cheating scandals. Every once in a while a new cheat manages to work for a week before being entirely bust. Valorant uses extremely deep anticheat that could even access higher privileges than TrustedInstaller on Windows.

              Counter Strike uses Valve’s regular old VAC that lives below administrator priveleges, and it’s got cheats.

              Escape from Tarkov uses regular anticheat software and is so plagued by cheating issues that the community imploded a few months ago when a YouTuber showed just how many cheaters are there per match.

              So yes, aggressive anticheats can work and do work. You can be opposed to them, that’s totally fair, but you can’t make up random claims like “they can’t work”.

              • conciselyverbose
                link
                fedilink
                1
                edit-2
                1 year ago

                If you don’t have people cheating with your malware installed (which you don’t actually have evidence for), the literal only possible explanation of that is that no one cares enough to cheat properly.

                Using a video camera pointed at the screen to control a mouse and keyboard that are exactly identical in every way to a real mouse and keyboard is not hard to do and no level of rootkit can ever under any circumstance detect it. It’s unconditionally impossible for their malware to detect any mildly sophisticated cheater.

                • kadu
                  link
                  fedilink
                  11 year ago

                  Yeah this comment makes it pretty clear you have zero idea what you’re talking about.

                  • conciselyverbose
                    link
                    fedilink
                    11 year ago

                    That’s literally all it takes for an undetectable aim-bot. It is unconditionally impossible to prevent from happening under any circumstance.

                    If your game is a piece of shit that gives users information they shouldn’t have, requiring fucking malware you should be in prison for thousands of life sentences for isn’t the solution. Fixing your game so it uses authoritative servers that don’t leak information is.

                    There is no possible scenario where installing a rootkit for “security” doesn’t both massively compromise security in every context and prove beyond any doubt that you are an unredeemable piece of shit. It’s not forgivable.