1. Forum
  2. tqwNet
  3. TQW_GENTECH

  • Minecraft players under threat from sneaky new malware

    From TechnologyDaily@1337:1/100 to All on Mon Jul 31 17:00:03 2023
    Minecraft players under threat from sneaky new malware

    Date:
    Mon, 31 Jul 2023 16:42:46 +0000

    Description:
    Running Minecraft with a server? You could find yourself a victim of an
    attack that enables RCE if you dont patch now.

    FULL STORY ======================================================================

    The Minecraft Malware Prevention Alliance ( MMPA ) has warned Minecraft players of a new vulnerability that can allow cybercriminals to run remote code and plant malware on victims devices.

    Fortunately, despite being actively exploited, it is an attack that is familiar among the Java community and as such, developers are already well-informed when it comes to issuing a fix.

    Not so fortunately, though, in the case of this attack, was the scale. According to MMPA, a bad actor scanned all Minecraft servers on the IPv4 address space. Following this, the group reckons that a malicious payload might have been deployed onto all affected servers. Minecraft malware is widespread

    The exploit, dubbed BleedingPipe, allows full remote code execution on
    clients and servers running some Minecraft mods on at least versions 1.7.10/1.12.2 of Forge. Read more

    These are the best Minecraft server hosting services



    Hackers are attacking Minecraft to push malware once again


    Chromebooks can now run Minecraft natively, and this is great news

    Among some of the known affected mods are EnderCore, LogisticsPipes, and BDLib, which have been fixed for the GT New Horizons versions. Others include Smart Moving 1.12, Brazier, DankNull, and Gadomancy.

    Despite being a highly exploited vulnerability, MMPA says that no instances have been to this scale in Minecraft so far.

    The group says: We do not know what the contents of the exploit were or if it was used to exploit other clients, although this is very much possible with the exploit.

    Server admins are urged to regularly check for suspicious files, as well as apply updates and security patches as soon as they become available in order to protect players. Players, too, can check for suspicious files, with both jSus and jNeedle being recommended scanning tools.

    More broadly, maintaining effective endpoint protection software on consumer machines and being prepared is always good practice. Check out our roundup of the best firewalls



    ======================================================================
    Link to news story: https://www.techradar.com/pro/minecraft-players-under-threat-from-sneaky-new-m alware


    --- Mystic BBS v1.12 A47 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)