Today
all RPG UPS Software
Today news
About the same in other media
More
RPG UPS Software

Ransomware abuses Genshin Impact's kernel mode anti-cheat to bypass antivirus protection

RPG UPS Software
Reading now: 447
pcgamer.com
pcgamer.compcgamer.com:

Security skeptics and advocates have worried for some time now that exploits able to take advantage of anti-cheat kernel-mode drivers could wreak serious havoc on PC security. Now it seems to have happened: The anti-cheat driver used by Genshin Impact, the popular free-to-play RPG, has been abused by a ransomware actor to stop antivirus processes and enable the mass deployment of their ransomware.

A new whitepaper published August 24th to Trend Micro(opens in new tab) explains how the perfectly legitimate driver mhyprot2.sys was used, absent any other parts of Genshin Impact, to gain root access to a system. 

«Security teams and defenders should note that mhyprot2.sys can be integrated into any malware,» wrote authors Ryan Soliven and Hitomi Kimura. 

«Genshin Impact does not need to be installed on a victim’s device for this to work; the use of this driver is independent of the game.»

Kernel-mode drivers are at the very core of your computer's system. At the risk of gross oversimplification, software at the kernel level generally has more control over your PC than you do. Genshin Impact's anti-cheat was previously under scrutiny for continuing to run—at the kernel level—even after you closed the game. Developer HoYoVerse, then known as MiHoYo, later changed that.(opens in new tab)

The paper is clear that this is a severe security breach of the entire Windows operating environment. It notes that the driver module «cannot be erased once distributed» and isn't inherently malicious—simply an abusable piece of otherwise-legitimate software. 

«This module is very easy to obtain and will be available to everyone until it is erased from existence,» the paper states. «It could remain for a long time as a useful utility for

Read more on pcgamer.com
All news from pcgamer.com
About this in other media
sportskeeda.com
Search for nurseries in forest to obtain Vasmrti: Genshin Impact Vanarana Nursery quest guide sportskeeda.com /2 years ago
sportskeeda.com
The Foolish Fatuus Genshin Impact quest guide: Open Sesame! secret achievement sportskeeda.com /2 years ago
sportskeeda.com
Where Are the Fierce Creatures?: Hidden Genshin Impact Sumeru quest guide sportskeeda.com /2 years ago
Show more
The website gamebastion.com is an aggregator of news from open sources. The source is indicated at the beginning and at the end of the announcement. You can send a complaint on the news if you find it unreliable.

Related News

21.09 / 09:59
tech.hindustantimes.com
Apple iPhone SE 3 STEAL DEAL! Get it under 27000 on Flipkart
It's raining iPhone offers on Flipkart. Even before the commencement of its Big Billion Days Sale, the e-commerce giant is already offering amazing deals on all iPhones. Flipkart has rolled out a huge price cut on the iPhone SE 3, which was launched this year. Along with the price cut, Flipkart is also offering exchange as well as bank offers to make the deal even sweeter. Check out the details of this steal deal below.
21.09 / 09:59
tech.hindustantimes.com
Mobile Extreme Earth BEWARE! In 3 days, even ordinary solar storms on Earth will have a Catastrophic effect
21.09 / 09:59
tech.hindustantimes.com
Party UPS Apple Dynamic Island vs Notch: The iPhone needs to let go of one and the answer is clear
21.09 / 09:29
thegamer.com
Platform Fighting UPS Progressive Cyberpunk Nintendo Fortnite's New Mechanic Is Just Bootleg Splatoon And I Kinda Love It
21.09 / 09:23
gamerant.com
Fighting Action UPS RWBY Ice Queendom Review: An Unfortunately Faithful Adaptation
21.09 / 09:23
gamerant.com
UPS Provident Cooper fishing Nintendo Splatoon 3: All Salmon Run Ranks
21.09 / 09:01
thegamer.com
Mobile Overwatch UPS Progressive Warframe boxing Destiny Overwatch 2 Is Already Making Some Weird Mistakes With Its Battle Pass
21.09 / 08:59
gadgets.ndtv.com
PlayStation 4 PlayStation 5 PC Xbox One PS4 PS5 FIFA 23: Ted Lasso to Be Part of EA's New Football Game, With Fictional Club AFC Richmond
21.09 / 08:53
techradar.com
Platform Action UPS golf Everything confirmed in the GTA 6 leak, including setting, characters, and combat
21.09 / 08:47
pcgamer.com
The best visual novel of 2017 is getting a sequel
21.09 / 08:47
pcgamer.com
UPS NVIDIA Cyberpunk Nvidia's RTX 4090 4x performance claims aren't holding up on current games
21.09 / 08:37
tech.hindustantimes.com
Apple iPhone SE 2 under 14000! Check out amazing iPhone SE 2 price drop on Flipkart
21.09 / 08:37
tech.hindustantimes.com
NASA Asteroid Watch: Huge 100-ft asteroid could fly terrifyingly close to Earth!
21.09 / 08:25
gamerant.com
UPS Pokemon YouTube: Who Is CandyEvie?
21.09 / 07:45
sportskeeda.com
Streamers Twitch streamer banned for having s*x on livestream explodes on social media, gains thousands of followers
21.09 / 07:45
digitaltrends.com
Marvell Odyssey A single-player Iron Man game is coming from the studio behind Dead Space
21.09 / 07:45
sportskeeda.com
UPS Provident Massive Blitzcrank buffs hit League of Legends' PBE, enhancing the champion's potential in different roles
21.09 / 07:33
thegamer.com
Battlefield UPS Marvell Tencent The Biggest Gaming News For September 20, 2022
21.09 / 07:33
tech.hindustantimes.com
UPS Samsung Software boxing Motorola Edge 30 Ultra Review: Terrific value!
21.09 / 07:29
pcgamer.com
Overwatch Dreams UPS NVIDIA Nvidia's RTX 4090 targets 300+ FPS at 1440p with low latency for competitive shooters
21.09 / 07:27
bgr.in
UPS Marvell Sony Uncharted PlayStation Publisher sale is here: Massive discounts on God of War, Days Gone, Horizon Zero Dawn and more
Latest News
Main Page
Persons
Art 2555
Chris Scullion 808
Square Enix 957
all persons
Places
Netflix 1072
county Early 740
city Tokyo 940
all places
G.I. Joe: Wrath of Cobra Review
Wicked & Gladiator II Box Office Previews Are Strong But Not Barbenheimer Levels
Guilty Gear Strive photo mode update makes fighters disappear when viewed at inappopriate angles
This YouTuber has been on a mission to discover the worst Lego to step on, and it involves a ballistic gel foot
By the end of the year some RTX 4070 laptops could be the first non-NPU machines to be given a Microsoft Copilot+ stamp
About Us

Gamebastion.com is the biggest games news hub for the gamers all around the world. It is your source of the latest video game news, reviews, previews, podcasts, the most exciting releases, interviews with the video gaming industry's biggest names and other gaming features. Enjoy reading just the most authoritative, up-to-date news and headlines from the video games and entertainment industry at Gamebastion. The biggest video game news, rumors, previews, and other info about the PC, PS4, Xbox, Switch, & mobile titles you play. Stay tuned & well informed 24/7 with us!

Owner: SNOWLAND s.r.o.
Registration certificate 06691200
Address:
Snowland s.r.o.
16200, Na okraji 381/41, Veleslavín, 162 00 Praha 6
Czech Republic

Categories
Info
For advertisers
Add news

©2024. All rights reserved.

DMCA