Cybersecurity

5845 readers

57 users here now

c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.

THE RULES

Instance Rules

Be respectful. Everyone should feel welcome here.
No bigotry - including racism, sexism, ableism, homophobia, transphobia, or xenophobia.
No Ads / Spamming.
No pornography.

Community Rules

Idk, keep it semi-professional?
Nothing illegal. We're all ethical here.
Rules will be added/redefined as necessary.

If you ask someone to hack your "friends" socials you're just going to get banned so don't do that.

Learn about hacking

Hack the Box

Try Hack Me

Pico Capture the flag

Other security-related communities !databreaches@lemmy.zip !netsec@lemmy.world !securitynews@infosec.pub !cybersecurity@infosec.pub !pulse_of_truth@infosec.pub

Notable mention to !cybersecuritymemes@lemmy.world

founded 2 years ago

MODERATORS

kid@sh.itjust.works

Lanky_Pomegranate530@midwest.social

Hackers abuse popular Godot game engine to infect thousands of PCs (www.bleepingcomputer.com)

submitted 3 weeks ago* (last edited 3 weeks ago) by BrikoX@lemmy.zip to c/cybersecurity@sh.itjust.works

3 comments fedilink hide all child comments

Hackers have used new GodLoader malware exploiting the capabilities of the widely used Godot game engine to evade detection and infect over 17,000 systems in just three months.

you are viewing a single comment's thread
view the rest of the comments

[–] Tyfud@lemmy.world 5 points 3 weeks ago* (last edited 3 weeks ago)

This is a non issue. It's like saying hackers used a programming language to write malicious code.

Of course they did. How else would they do it?

They're just using the Godot engine (C#) to do it instead of the python interpreter.

Edit: The people downvoting appear to not understand how this works.

They wrote a module and made it available through the Gadot GodLoader "marketplace" for people to download. You could do the same thing with Unity3D, or UnrealEngine, or the Android store, or the Apple Store. The difference is those have safeguards from paid people and systems to verify the authenticity and maliciousness of the tools/code that are submitted. Gadot/Godloader lacks these controls in their system.

The only thing it's really doing it running arbitrary code. Arbitrary code the user would have to in some way allow it to run by installing an unknown/unverified script.

Similar to something like the Greasemonkey extension for FF/Chrome.

When you use modules and tools like this you are taking a risk that you are able to self-monitor, otherwise only run scripts/download modules from trusted sources.

There's nothing specific about Gadot's system here, this is like clickbait.