Minecraft players under threat from sneaky new malware
Numerous Minecraft mods could be putting players at risk
The Minecraft Malware Prevention Alliance (MMPA) has warned Minecraft players of a new vulnerability that can allow cybercriminals to run remote code and plant malware on victims’ devices.
Fortunately, despite being actively exploited, it is an attack that is familiar among the Java community and as such, developers are already well-informed when it comes to issuing a fix.
Not so fortunately, though, in the case of this attack, was the scale. According to MMPA, “a bad actor scanned all Minecraft servers on the IPv4 address space.” Following this, the group reckons that a malicious payload might have been deployed onto all affected servers.
Minecraft malware is widespread
The exploit, dubbed ‘BleedingPipe,’ allows full remote code execution on clients and servers running some Minecraft mods on at least versions 1.7.10/1.12.2 of Forge.
Among some of the known affected mods are EnderCore, LogisticsPipes, and BDLib, which have been fixed for the GT New Horizons versions. Others include Smart Moving 1.12, Brazier, DankNull, and Gadomancy.
Despite being a highly exploited vulnerability, MMPA says that no instances have been to this scale in Minecraft so far.
The group says: “We do not know what the contents of the exploit were or if it was used to exploit other clients, although this is very much possible with the exploit.”
Are you a pro? Subscribe to our newsletter
Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!
Server admins are urged to regularly check for suspicious files, as well as apply updates and security patches as soon as they become available in order to protect players. Players, too, can check for suspicious files, with both jSus and jNeedle being recommended scanning tools.
More broadly, maintaining effective endpoint protection software on consumer machines and being prepared is always good practice.
- Check out our roundup of the best firewalls
With several years’ experience freelancing in tech and automotive circles, Craig’s specific interests lie in technology that is designed to better our lives, including AI and ML, productivity aids, and smart fitness. He is also passionate about cars and the decarbonisation of personal transportation. As an avid bargain-hunter, you can be sure that any deal Craig finds is top value!
Micron launches 36GB HBM3E memory as it plays catch up with Samsung and SK Hynix as archrivals frantically rush towards the next big thing — HBM4 with its 16 layers, 1.65TBps bandwidth, and 48GB SKUs
Just in time for Black Friday? Samsung may be preparing for launch of 990 Pro successor — PM9E1 SSD is its first PCIe 5.0 SSD but it isn't aimed at end users