Esport Newshubb
Advertisement
  • Home
  • News
  • Esports
  • Contact us
No Result
View All Result
  • Home
  • News
  • Esports
  • Contact us
No Result
View All Result
Esport Newshubb
No Result
View All Result
Home News

Malicious Game Modifications in Dota 2 Infected Players with the Malware

admin by admin
February 11, 2023
in News


Several security researchers identified that malicious game mods of Dota 2 served as a potential threat to backdoor the player systems.

A suspicious attacker came up with the four-game mods in relation to the popular Dota 2 multiplayer online battle arena video game. He published it on the steam store to target most game fans as identified by the Threat Lab Researchers.

Researcher of Avast Malware stated, “These game modes were named Overdog no annoying heroes (id 2776998052), Custom Hero Brawl (id 2780728794), and Overthrow RTZ Edition X10 XP (id 2780559339).”

T&Cs Apply, 18+ Only.

The attacker also specified the new file known as evil.lua, which is utilized to test server-side Lua execution capabilities. Such malicious snippets might be linked to logging the execution of arbitrary system commands that end up in creating coroutines and posting HTTP GET requests.

Though the threat actor helps in the early detection of the bundled backdoor for the first game mode out on Steam Store, the twenty malicious code lines and game modifications were unable to identify.

Backdoor has helped the threat actor with the remote execution of commands related to the infected devices that foster malware installation on the device.

Vojtěšek mentioned, “This backdoor permits the execution of any JavaScript acquired through HTTP, providing the attacker the power to conceal and modify the exploit code at their discretion without undergoing the game mode verification process, which can be dangerous, and updating the entire custom game mode.”

Lua Backdoor Code Launched on Dota 2 Game Servers

Using a backdoor at the players’ compromised systems resulted in a download of the Chrome exploits for abuse in the wild.

The tentatively targeted vulnerability stands at CVE-2021-38003, a massive security flaw evident in Google’s V8 JavaScript and even the WebAssembly engine, which was exploited in Zero-day attacks and mended by October 2021.

Vojtěšek further added, “Since V8 was not sandboxed in Dota, the exploit on its own allowed for remote code execution against other Dota players.”

The JavaScript exploit for the CVE-2021-38003 got injected using the legitimate file subject to the game’s scoreboard functionality which is hard to detect.

Thunderpick

T&Cs Apply, 18+ Only.

Avast further reported its findings to the Dota 2MOBA gaming developer, Valve, who updated the vulnerability of the V8 version on Jan 12, 2023. Before this, Dota 2 made use of the v8.dll version that was compiled in December 2018.

Recently, the GTA’s Developer Rockstar Games made a security update relevant to addressing the Grand Theft Auto online issue as soon as possible!



Source link

Previous Post

Riot hotfix two champions in the latest League Patch 13.3

Next Post

Four Tips to Help You Improve

Next Post
Four Tips to Help You Improve

Four Tips to Help You Improve

Recommended

How to Play Tekken 7 – Complete Beginner’s Guide

June 8, 2023

How to Play Batrider Like a Pro – DOTABUFF

September 14, 2022
Aberrus the Shadowed Crucible Boss Guide, TLDR Edition

Aberrus the Shadowed Crucible Boss Guide, TLDR Edition

April 18, 2023
Widowmaker Guide, Trap Your Pray

Widowmaker Guide, Trap Your Pray

October 5, 2022

Don't miss it

Chuppa Cross Interview at Pokémon Pittsburgh Regional
News

Chuppa Cross Interview at Pokémon Pittsburgh Regional

September 24, 2023
News

Loki Joins Brawlhalla with Latest Legend Reveal

September 23, 2023
Essential First 5 Steps – Comprehensive Starfield Guide
News

Essential First 5 Steps – Comprehensive Starfield Guide

September 23, 2023
News

Fortnite Chapter 4 Season 4 Battle Pass

September 22, 2023
The Top 5 Most Underrated CS2 Twitch Streamers
News

The Top 5 Most Underrated CS2 Twitch Streamers

September 22, 2023
News

LCS welcomes new contender as TSM sells franchise slot

September 21, 2023
esport white

© Esport News Hubb All rights reserved.

Use of these names, logos, and brands does not imply endorsement unless specified. By using this site, you agree to the Privacy Policy and Terms & Conditions.

Navigate Site

  • Home
  • News
  • Esports
  • Contact us

Newsletter Sign Up

No Result
View All Result
  • Home
  • News
  • Esports
  • Contact us

© 2022 Esport News Hubb All rights reserved.