Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: 'Minecraft' mod exploit lets hackers control your device  (Read 106 times)
HCK
Global Moderator
Hero Member
*****
Posts: 79425
« on: August 01, 2023, 04:05:10 pm »
'Minecraft' mod exploit lets hackers control your device

<p>You might want to run antivirus tools if you use certain Minecraft mods. The MMPA security community has <a data-i13n="cpos:1;pos:1" href="https://blog.mmpa.info/posts/bleeding-pipe/">learned[/url] that hackers are exploiting a &quot;BleedingPipe&quot; flaw in the Forge framework powering numerous mods, including some versions of Astral Sorcery, EnderCore and Gadomancy. If one of the game tweaks is running on Forge 1.7.10/1.12.2, intruders can remotely control both servers and gamers' devices. In one case, an attacker was using a new exploit variant to breach a Minecraft server and steal both Discord chatters' credentials as well as players' Steam session cookies.</p><p>As Bleeping Computer<a data-i13n="cpos:2;pos:1" href="https://www.bleepingcomputer.com/news/security/hackers-exploit-bleedingpipe-rce-to-target-minecraft-servers-players/#google_vignette">explains[/url], BleedingPipe relies on incorrect deserialization for a class in the Java code powering the mods. Users just have to send special network traffic to a server to take control. The first evidence of BleedingPipe attacks <a data-i13n="cpos:3;pos:1" href="https://github.com/bdew-minecraft/bdlib/issues/57">surfaced[/url] in March 2022 and were quickly patched by modders, but MMPA understands most servers running the mods haven't updated.</p><span id="end-legacy-contents"></span><p>We've asked Mojang parent company Microsoft for comment. It's not responsible for Forge, so the tech giant can't necessarily stop or limit the damage. You won't be affected if you use stock Minecraft or stick to single-player sessions.</p><p>The full scope of the vulnerability isn't clear. While there are 46 mods known to fall prey to BleedingPipe as of this writing, there's the potential for considerably more. Users are asked to scan their systems (including their Minecraft folder) for malware. Server operators, meanwhile, are urged to either update mods or stop running them entirely. MMPA also has a PipeBlocker mod that protects everyone involved, although mod packs may cause problems if the mods haven't been updated.</p>This article originally appeared on Engadget at https://www.engadget.com/minecraft-mod-exploit-lets-hackers-control-your-device-162231445.html?src=rss

Source: 'Minecraft' mod exploit lets hackers control your device
Logged
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to: