Genshin Impact Anticheat: Difference between revisions
Created page with "{{ProductCargo |Company=Mihoyo |ProductLine=Genshin Impact |ReleaseYear=2020 |InProduction=Yes |ArticleType=Service |Category=Video Games |Website=https://genshin.hoyoverse.com/ |Description=Genshin Impact's Anticheat, sometimes referred to as mhyprot2.sys, is a kernel-level anticheat that runs regardless of if the game is running. }} {{Ph-C-Int}} ==Consumer-impact summary== {{Ph-C-CIS}} ==Incidents== {{Ph-C-Inc}} This is a list of all consumer-protection incide..." |
Add summary, incidents |
||
| Line 12: | Line 12: | ||
==Consumer-impact summary== | ==Consumer-impact summary== | ||
Overview of concerns that arise from the conduct towards users of the product: | |||
* Privacy: Genshin Impact Anti-cheat is a kernel-level anti-cheat for a what is mostly a single player game. Genshin Impact's developers, Mihoyo, is a Chinese company headquartered in Shanhai. | |||
* Control: Users must have this anti-cheat running while playing the game, and after the game is finished playing.<ref>{{Cite web |date=2020-09-28 |title=About Our Anti-Cheat System (Updated) |url=https://genshin.hoyoverse.com/en/news/detail/103720 |url-status=live |archive-url=https://web.archive.org/web/20230201114443/https://genshin.hoyoverse.com/en/news/detail/103720 |archive-date=2023-02-01 |access-date=2025-09-22 |website=Genshin Impact}}</ref> | |||
* Access: As a kernel-level anti-cheat, the anti-cheat has the highest amount of privilege on your system. | |||
{{Ph-C-CIS}} | {{Ph-C-CIS}} | ||
| Line 18: | Line 23: | ||
This is a list of all consumer-protection incidents related to this product. Any incidents not mentioned here can be found in the [[:Category:{{PAGENAME}}|{{PAGENAME}} category]]. | This is a list of all consumer-protection incidents related to this product. Any incidents not mentioned here can be found in the [[:Category:{{PAGENAME}}|{{PAGENAME}} category]]. | ||
=== | ===Genshin Impact Anti-cheat Used to Bypass Anti-virus in Ransomware Attack (''August, 2022'')=== | ||
{{Main|link to the main CR Wiki article}} | {{Main|link to the main CR Wiki article}} | ||
Genshin Impact's anti-cheat was used in a ransomware attack vector. This was originally reported on by TrendMicro. <ref>{{Cite web |last=Soliven |first=Ryan |date=2022-08-24 |title=Ransomware Actor Abuses Genshin Impact Anti-Cheat Driver to Kill Antivirus |url=https://www.trendmicro.com/en_us/research/22/h/ransomware-actor-abuses-genshin-impact-anti-cheat-driver-to-kill-antivirus.html |url-status=live |archive-url=https://web.archive.org/web/20250918100139/https://www.trendmicro.com/en_us/research/22/h/ransomware-actor-abuses-genshin-impact-anti-cheat-driver-to-kill-antivirus.html |archive-date=2025-09-18 |access-date=2025-09-22 |website=TrendMicro}}</ref> During this period of vulnerability, Genshin Impact's anti-cheat was utilized to bypass anti-virus software, allowing attackers to remotely deploy ransomware payloads to an affected user's computer. | |||
Genshin Impact's PR team, Hoyoverse PR, responded to multiple news outlets with a generic answer that seems to confirm the validity of the claims by TrendMicro. <ref>{{Cite news |last=Bolding |first=Jonathan |date=2022-08-28 |title=Ransomware abuses Genshin Impact's kernel mode anti-cheat to bypass antivirus protection |url=https://www.pcgamer.com/ransomware-abuses-genshin-impacts-kernel-mode-anti-cheat-to-bypass-antivirus-protection/ |url-status=live |access-date=2025-09-22 |work=PCGamer |pages=1}}</ref><ref>{{Cite web |last=Toulas |first=Bill |date=2022-08-25 |title=Hackers abuse Genshin Impact anti-cheat system to disable antivirus |url=https://www.bleepingcomputer.com/news/security/hackers-abuse-genshin-impact-anti-cheat-system-to-disable-antivirus/ |url-status=live |access-date=2025-09-22 |website=Bleeping Computer}}</ref> | |||
===Example incident two (''date'')=== | ===Example incident two (''date'')=== | ||
... | ... | ||
| Line 33: | Line 40: | ||
[[Category:{{PAGENAME}}]] | [[Category:{{PAGENAME}}]] | ||
[[Category:Anti-cheat software]] | |||