• conciselyverbose@kbin.social
    link
    fedilink
    arrow-up
    15
    ·
    1 year ago

    A new whitepaper published August 24th to Trend Micro explains how the perfectly legitimate driver mhyprot2.sys was used, absent any other parts of Genshin Impact, to gain root access to a system.

    I think maybe you should re-evaluate your definition of “perfectly legitimate”.

    • Grimpen@lemmy.ca
      link
      fedilink
      arrow-up
      4
      ·
      1 year ago

      Just like the Mafioso “perfectly legitimate businessmen” who offer fire insurance and personal injury insurance door to door, after dark. Be a real shame if something were to happen.

      • conciselyverbose@kbin.social
        link
        fedilink
        arrow-up
        8
        ·
        1 year ago

        I can understand that bugs happen. It’s absolutely possible for well intentioned software to have a fatal flaw that leads to catastrophic security breaches.

        But there’s no scenario where a game having that access is defensible. It’s gross overreach that can’t possibly be in good faith and you deserve all the hate you get if anything bad happens.

        • devtimi@lemmy.worldM
          link
          fedilink
          English
          arrow-up
          2
          ·
          1 year ago

          The way people who cheat talk about input modifier devices leaves a bad taste in my mouth, so I can understand why a driver level system was considered.

          Cheaters in online games really are the worst type of people because they feel entitled to ruin other peoples games. It’s one thing to “level up” your solo experience. It’s a different thing to intend to ruin someone else’s.

          • conciselyverbose@kbin.social
            link
            fedilink
            arrow-up
            1
            arrow-down
            1
            ·
            1 year ago

            Even if we pretended it was possible for their anticheat to work (it isn’t), it’s pure unredeemable evil to think it’s possible for there to be a scenario you’re entitled to that access.

            If 50 percent of players were cheaters with that access and literally no one ever cheated again with it, you would be a monster to consider using it. It should be a criminal offense with mandatory jail time to the CEO and board of directors for every single computer it’s installed on.

              • conciselyverbose@kbin.social
                link
                fedilink
                arrow-up
                1
                ·
                edit-2
                1 year ago

                If you don’t have people cheating with your malware installed (which you don’t actually have evidence for), the literal only possible explanation of that is that no one cares enough to cheat properly.

                Using a video camera pointed at the screen to control a mouse and keyboard that are exactly identical in every way to a real mouse and keyboard is not hard to do and no level of rootkit can ever under any circumstance detect it. It’s unconditionally impossible for their malware to detect any mildly sophisticated cheater.

                  • conciselyverbose@kbin.social
                    link
                    fedilink
                    arrow-up
                    1
                    arrow-down
                    1
                    ·
                    1 year ago

                    That’s literally all it takes for an undetectable aim-bot. It is unconditionally impossible to prevent from happening under any circumstance.

                    If your game is a piece of shit that gives users information they shouldn’t have, requiring fucking malware you should be in prison for thousands of life sentences for isn’t the solution. Fixing your game so it uses authoritative servers that don’t leak information is.

                    There is no possible scenario where installing a rootkit for “security” doesn’t both massively compromise security in every context and prove beyond any doubt that you are an unredeemable piece of shit. It’s not forgivable.

    • Contend6248@feddit.de
      link
      fedilink
      arrow-up
      2
      ·
      edit-2
      1 year ago

      Let’s punch a huge hole in the OS and go from there. That sounds perfectly reasonable.

      I could maybe somehow understand it, if it would bring you absolute safety from cheaters, the funniest part about this is, the cheat devs are still above them, so just throw in the towel of trying to destroy the safety of legitimate players devices if you are still losing anyway.