A new whitepaper published August 24th to Trend Micro explains how the perfectly legitimate driver mhyprot2.sys was used, absent any other parts of Genshin Impact, to gain root access to a system.
I think maybe you should re-evaluate your definition of “perfectly legitimate”.
Just like the Mafioso “perfectly legitimate businessmen” who offer fire insurance and personal injury insurance door to door, after dark. Be a real shame if something were to happen.
I can understand that bugs happen. It’s absolutely possible for well intentioned software to have a fatal flaw that leads to catastrophic security breaches.
But there’s no scenario where a game having that access is defensible. It’s gross overreach that can’t possibly be in good faith and you deserve all the hate you get if anything bad happens.
The way people who cheat talk about input modifier devices leaves a bad taste in my mouth, so I can understand why a driver level system was considered.
Cheaters in online games really are the worst type of people because they feel entitled to ruin other peoples games. It’s one thing to “level up” your solo experience. It’s a different thing to intend to ruin someone else’s.
Even if we pretended it was possible for their anticheat to work (it isn’t), it’s pure unredeemable evil to think it’s possible for there to be a scenario you’re entitled to that access.
If 50 percent of players were cheaters with that access and literally no one ever cheated again with it, you would be a monster to consider using it. It should be a criminal offense with mandatory jail time to the CEO and board of directors for every single computer it’s installed on.
If you don’t have people cheating with your malware installed (which you don’t actually have evidence for), the literal only possible explanation of that is that no one cares enough to cheat properly.
Using a video camera pointed at the screen to control a mouse and keyboard that are exactly identical in every way to a real mouse and keyboard is not hard to do and no level of rootkit can ever under any circumstance detect it. It’s unconditionally impossible for their malware to detect any mildly sophisticated cheater.
That’s literally all it takes for an undetectable aim-bot. It is unconditionally impossible to prevent from happening under any circumstance.
If your game is a piece of shit that gives users information they shouldn’t have, requiring fucking malware you should be in prison for thousands of life sentences for isn’t the solution. Fixing your game so it uses authoritative servers that don’t leak information is.
There is no possible scenario where installing a rootkit for “security” doesn’t both massively compromise security in every context and prove beyond any doubt that you are an unredeemable piece of shit. It’s not forgivable.
I think maybe you should re-evaluate your definition of “perfectly legitimate”.
Just like the
Mafioso“perfectly legitimate businessmen” who offer fire insurance and personal injury insurance door to door, after dark. Be a real shame if something were to happen.I can understand that bugs happen. It’s absolutely possible for well intentioned software to have a fatal flaw that leads to catastrophic security breaches.
But there’s no scenario where a game having that access is defensible. It’s gross overreach that can’t possibly be in good faith and you deserve all the hate you get if anything bad happens.
The way people who cheat talk about input modifier devices leaves a bad taste in my mouth, so I can understand why a driver level system was considered.
Cheaters in online games really are the worst type of people because they feel entitled to ruin other peoples games. It’s one thing to “level up” your solo experience. It’s a different thing to intend to ruin someone else’s.
Even if we pretended it was possible for their anticheat to work (it isn’t), it’s pure unredeemable evil to think it’s possible for there to be a scenario you’re entitled to that access.
If 50 percent of players were cheaters with that access and literally no one ever cheated again with it, you would be a monster to consider using it. It should be a criminal offense with mandatory jail time to the CEO and board of directors for every single computer it’s installed on.
deleted by creator
If you don’t have people cheating with your malware installed (which you don’t actually have evidence for), the literal only possible explanation of that is that no one cares enough to cheat properly.
Using a video camera pointed at the screen to control a mouse and keyboard that are exactly identical in every way to a real mouse and keyboard is not hard to do and no level of rootkit can ever under any circumstance detect it. It’s unconditionally impossible for their malware to detect any mildly sophisticated cheater.
deleted by creator
That’s literally all it takes for an undetectable aim-bot. It is unconditionally impossible to prevent from happening under any circumstance.
If your game is a piece of shit that gives users information they shouldn’t have, requiring fucking malware you should be in prison for thousands of life sentences for isn’t the solution. Fixing your game so it uses authoritative servers that don’t leak information is.
There is no possible scenario where installing a rootkit for “security” doesn’t both massively compromise security in every context and prove beyond any doubt that you are an unredeemable piece of shit. It’s not forgivable.
Reminds me of Sony’s Rootkit. Except now it’s normal.