Wow, wait until you hear about the Intel Management Engine
XLE@piefed.social 17 hours ago
This crack sounds too scary to use. Impressive, but scary.
As usual for any DRM company or publisher, Irdeto also claimed that downloading games with the bypass is a security concern, but this time around, the company has a valid point.
Using the hypervisor bypass, even in its latest incarnation, requires users to… [install] a community-made hypervisor (HV) with Windows running on top of it. This HV fakes responses to the checks that Denuvo makes, and runs with higher permissions… than the operating system itself and has full, nearly untraceable access to hardware and software.
btsax@reddthat.com 13 hours ago
redsand@infosec.pub 16 hours ago
Empress building a high end botnet?
morto@piefed.social 16 hours ago
Would running an os in a separate partition just for games mitigate the risks?
LiveLM@lemmy.zip 16 hours ago
Not really? No reason it couldn’t just read those separate partitions too, if it really is inserting itself the way I think it is
Kalashnikov@lemmygrad.ml 13 hours ago
This is not scary at all. You must trust any code that you execute on your computer. Pirated games, if they were malicious, can already get whatever they want done on your computer, because you are giving it arbitrary code execution privileges. Fortunately there is a vast network of p2p and scene crackers that are trustworthy, who you can trust (even more so than some publishers) to respect your user rights.
The level of access hardly matters. If you were a malware developer masquerading as a legitimate cracker, there are many privilege escalation tricks you can use once you have any amount of access to a machine. And even if you didn’t, the lowest level of access is typically enough to do financial crimes (stealing browser cookies to access your bank account, or ransoming your documents folder).
underisk@lemmy.ml 16 hours ago
If you think that’s scary wait til you hear what all that is trying to circumvent.
ColeSloth@discuss.tchncs.de 15 hours ago
On a technical level… Less.
The exploit completely guts and opens up your system to pretty much anything. More access than even denovo.
Use the included scripts (or manually do it yourself or make your own script) to re enable everything after you’re done playing the game and reboot the system. I’d also leave the router unplugged while you play. This denovo bypass seriously leaves your system super unsecured. Only get your games using this exploit from very trusted sources and don’t be lazy about enabling everything again and rebooting before plugging back into the internet.
Damarus@feddit.org 14 hours ago
It’s pretty funny how things have turned out. 20 years ago (and now, really) we had rootkits as DRM, now we’ve got rootkits as game cracks.
XLE@piefed.social 15 hours ago
Nasty stuff I don’t want on my computer either. As an amateur, was really hoping the cracks would remove it, not circumvent it…