Kernel Level Anti-Cheats: Difference between revisions
→Security Concerns: clarify concerns, copyedit, provide sources |
Genshin Impact is NOT an MMO. It requires a max of 4 players in order play together in co-op. What makes it a gacha game is the banners and pity system giving the players the chance to unlock certain characters for a limited time. |
||
| Line 14: | Line 14: | ||
If a malicious actor was to discover a security issue in a kernel level anti-cheat significant enough to allow them to hijack the software, they would be able to directly execute code at its level of access, allowing them to bypass security measures put in place by the operating system and anti-virus software. | If a malicious actor was to discover a security issue in a kernel level anti-cheat significant enough to allow them to hijack the software, they would be able to directly execute code at its level of access, allowing them to bypass security measures put in place by the operating system and anti-virus software. | ||
This is not a purely hypothetical scenario; it has already taken place in an incident with the popular | This is not a purely hypothetical scenario; it has already taken place in an incident with the popular gacha co-op adventure [[Genshin Impact|''Genshin Impact'']], where the game's anti-cheat '''mhyprot2.sys''<nowiki/>' was hijacked by malicious actors to disable users' Antivirus software, with the intent of distributing ransomware.<ref>{{Cite web |last=Soliven |first=Ryan |last2=Kimura |first2=Hitomi |date=2022-08-24 |title=Ransomware Actor Abuses Genshin Impact Anti-Cheat Driver to Kill Antivirus |url=https://www.trendmicro.com/en_us/research/22/h/ransomware-actor-abuses-genshin-impact-anti-cheat-driver-to-kill-antivirus.html}}</ref> | ||
==Examples== | ==Examples== | ||