Beware, Dark Souls 3 Game Has Dangerous Security Vulnerabilities!

 


A malicious security vulnerability (remote code execution (RCE)) was found in the game Dark Souls 3, which allows hackers to take over access to the victim's computer.

This loophole puts PC gamers who install Dark Souls, Dark Souls 2, and Dark Souls 3 and play online at risk. Fortunately, the Dark Souls game server has now been shut down to prevent unwanted things from happening.


This security vulnerability has proven to be dangerous, as can be seen from The__Grim__Sleeper's stream on Twitch while playing Dark Souls 3. At the end of the stream, the game he was playing suddenly crashed.



Not only that, after the game crashed, a robotic voice came from Microsoft's text-to-speech criticizing The__Grim__Sleeper's game. Then he mentioned that Microsoft PowerShell suddenly opened by itself, indicating that a hacker used a program to run a script that triggered the text-to-speech feature to activate.

From existing reports, the hacker who hacked The__Grim__Sleeper's PC was not a malicious hacker. He reportedly just wanted to show the existence of the gap. Because he had reported the loophole to FromSoftware -- the developer of DarkSouls -- but ignored it.


As a result, he chose another way to show the danger of the loophole, namely by hacking popular game streamers such as The__Grim__Sleeper's to attract attention, as quoted by us from The Verge, Monday (24/2/2022).


This RCE is one of the most dangerous security holes according to Kaspersky. Through this loophole, hackers can run malicious code on their victims' computers, which can have a huge impact and are difficult to repair. Including the potential to steal confidential information from this loophole.


Blue Sentinel, a community-made anti-cheat mod for Dark Souls 3 also patched the gap in the mod so it wouldn't be affected by RCE. Then in a post on the Reddit Dark Souls3 forum, a user explained that currently only four people know how to execute the RCE loophole in Dark Souls 3, two of whom are developers of Blue Sentinel, while the other two are the hacker who hacked The__Grim__Sleeper's computer.


Bandai Namco, publisher of Dark Souls also spoke up in the Reddit post, and thanked them for reporting the problem. They admitted that this problem had been reported to their internal team.


A further step from FromSoftware and Bandai Namco is to shut down PvP servers for Dark Souls, Dark Souls 2, and Dark Souls 3 to investigate this loophole further. Oh yes, this disabled server is a server for players on PC, while players on PlayStation and Xbox consoles can still operate.

Previous Post Next Post

Contact Form