Open Menu
AllLocalCommunitiesAbout
lotide
AllLocalCommunitiesAbout
Login

Denuvo has been broken, company promises countermeasures against new DRM bypasses — zero-day game releases become norm as security concerns mount over hypervisor-based bypass

⁨281⁩ ⁨likes⁩

Submitted ⁨⁨2⁩ ⁨weeks⁩ ago⁩ by ⁨throws_lemy@reddthat.com⁩ to ⁨technology@lemmy.zip⁩

https://www.tomshardware.com/video-games/pc-gaming/denuvo-has-been-broken-company-promises-countermeasures-against-new-drm-bypasses-zero-day-game-releases-become-norm-as-security-concerns-mount-over-hypervisor-based-bypass

source

Comments

Sort:hotnewtop
  • AshUchiha@lemmy.world ⁨2⁩ ⁨weeks⁩ ago

    FuckDenuvo. Let’s see to which lengths they’ll go to block hypervisor.

    source
  • XLE@piefed.social ⁨2⁩ ⁨weeks⁩ ago

    This crack sounds too scary to use. Impressive, but scary.

    As usual for any DRM company or publisher, Irdeto also claimed that downloading games with the bypass is a security concern, but this time around, the company has a valid point.

    Using the hypervisor bypass, even in its latest incarnation, requires users to… [install] a community-made hypervisor (HV) with Windows running on top of it. This HV fakes responses to the checks that Denuvo makes, and runs with higher permissions… than the operating system itself and has full, nearly untraceable access to hardware and software.

    source
    • underisk@lemmy.ml ⁨2⁩ ⁨weeks⁩ ago

      If you think that’s scary wait til you hear what all that is trying to circumvent.

      source
      • ColeSloth@discuss.tchncs.de ⁨2⁩ ⁨weeks⁩ ago

        On a technical level… Less.

        The exploit completely guts and opens up your system to pretty much anything. More access than even denovo.

        Use the included scripts (or manually do it yourself or make your own script) to re enable everything after you’re done playing the game and reboot the system. I’d also leave the router unplugged while you play. This denovo bypass seriously leaves your system super unsecured. Only get your games using this exploit from very trusted sources and don’t be lazy about enabling everything again and rebooting before plugging back into the internet.

        source
        • -> View More Comments
      • XLE@piefed.social ⁨2⁩ ⁨weeks⁩ ago

        Nasty stuff I don’t want on my computer either. As an amateur, was really hoping the cracks would remove it, not circumvent it…

        source
    • btsax@reddthat.com ⁨2⁩ ⁨weeks⁩ ago

      Wow, wait until you hear about the Intel Management Engine

      source
      • redsand@infosec.pub ⁨2⁩ ⁨weeks⁩ ago

        Do you have a moment for our lord and savoir Coreboot? Also RISC

        source
    • redsand@infosec.pub ⁨2⁩ ⁨weeks⁩ ago

      Empress building a high end botnet?

      source
    • JATtho@lemmy.world ⁨2⁩ ⁨weeks⁩ ago

      I wouldn’t touch this without air-gapping the machine it’s run on. The funny thing here is that Denuvo can’t do much to prevent this hack.

      The HV is intentionally malicious and modifies the guest on the fly to archive the Denuvo hack. The hack requires to disable all major security protections in the victim OS, so the HV can more freely poke at the victim kernel. A jne-instruction to check if running under a compromised HV? It’s now a nop-instruction.

      The HV has access to everything that is plugged in physically, or run on top of it. In theory it e.g. extract encryption keys of https connections from any process in the guest.

      source
    • morto@piefed.social ⁨2⁩ ⁨weeks⁩ ago

      Would running an os in a separate partition just for games mitigate the risks?

      source
      • LiveLM@lemmy.zip ⁨2⁩ ⁨weeks⁩ ago

        Not really? No reason it couldn’t just read those separate partitions too, if it really is inserting itself the way I think it is

        source
    • LincolnsDogFido@lemmy.zip ⁨2⁩ ⁨weeks⁩ ago

      Well, you could potentially get a cheap office special PC to use as a guinea pig. (Depending on what it takes to run this software)

      source
      • XLE@piefed.social ⁨2⁩ ⁨weeks⁩ ago

        The problem with well-coded malware is it won’t execute unless it thinks it’s not being watched. And based on everything else in this article, it sounds like you’d also be opening your computer up to other parties exploiting security holes in the process.

        So a separate computer might work, but it would have to stay separate.

        source
    • Kalashnikov@lemmygrad.ml ⁨2⁩ ⁨weeks⁩ ago

      This is not scary at all. You must trust any code that you execute on your computer. Pirated games, if they were malicious, can already get whatever they want done on your computer, because you are giving it arbitrary code execution privileges. Fortunately there is a vast network of p2p and scene crackers that are trustworthy, who you can trust (even more so than some publishers) to respect your user rights.

      The level of access hardly matters. If you were a malware developer masquerading as a legitimate cracker, there are many privilege escalation tricks you can use once you have any amount of access to a machine. And even if you didn’t, the lowest level of access is typically enough to do financial crimes (stealing browser cookies to access your bank account, or ransoming your documents folder).

      source
  • ordnance_qf_17_pounder@reddthat.com ⁨2⁩ ⁨weeks⁩ ago

    Suck my balls Denuvo

    source
  • OwOarchist@pawb.social ⁨2⁩ ⁨weeks⁩ ago

    lol, get rekd, malware.

    source
  • Zacryon@feddit.org ⁨2⁩ ⁨weeks⁩ ago

    DRM to prevent copying games without official license has always been a waste of money. It is always just a matter of time until even the hardest DRM measure is broken. Always has been like this. I remember when Ubisoft was very proud of their new fancy DRM shitware that prevented unlicensed copies of some Assassin’s Creed title, only for it to be cracked a month later and the crackers saying “thanks for this interesting challenge”.

    source
    • corsicanguppy@lemmy.ca ⁨2⁩ ⁨weeks⁩ ago

      ‘Loss’ due to piracy was always like 3%. It costs way more than that for this mess. They don’t have to be good, just annoying enough to keep 97% of people paying.

      source
      • Kalashnikov@lemmygrad.ml ⁨2⁩ ⁨weeks⁩ ago

        Piracy gives you a better user experience than paying for games. Take steam - you have to run a proprietary application to launch your games, which can take these games away at any time, can modify your games to remove copyrighted music, leave them in unplayable states etc. Not to mention the performance impact from DRM, and the constant badgering about accounts/updates/logins/restrictions.

        With piracy, everything is seamless. Go to your trusty repacker, click download, click install, and now you have a game that you cna enjoy for the rest of your life.

        source
    • scutiger@lemmy.world ⁨2⁩ ⁨weeks⁩ ago

      Sure, it’s always been a question of time, but Denuvo has been very effective for decades. There were very few people who were able or willing to crack Denuvo games before. Publishers really only cared about the initial release anyway, and after a few months, it wasn’t worth paying for it anymore so they’d remove it from their games.

      source
      • Kalashnikov@lemmygrad.ml ⁨2⁩ ⁨weeks⁩ ago

        There is no universal law that makes it so that DRM will always be broken. In many cases they are, but in many other cases they aren’t. At the end of the day, they could offload so much of the processing to remote servers that you would basically be playing a cloud game, and that would be the end of bypassing and removal of DRM because they would control the hardware.

        source
        • -> View More Comments
    • Malgas@beehaw.org ⁨2⁩ ⁨weeks⁩ ago

      Not only has that always been the case, but that’s the only possibility: DRM, on a fundamental level, is just encryption where Bob and Eve are the same person.

      (For the uninitiated, the basic problem statement for cryptography is that Alice wants to send a message to Bob without Eve knowing what it says.)

      source
  • Dojan@pawb.social ⁨2⁩ ⁨weeks⁩ ago

    Lmao, fucking fantastic. Hope they crash and burn.

    source
  • nul9o9@lemmy.dbzer0.com ⁨2⁩ ⁨weeks⁩ ago

    Noice

    source
  • Kolanaki@pawb.social ⁨2⁩ ⁨weeks⁩ ago

    Finally get to check out Black Myth. Still won’t buy it until it just doesn’t have Denuvo at all, tho.

    source
  • samus12345@sh.itjust.works ⁨2⁩ ⁨weeks⁩ ago

    Hypervisor is too much of a security risk for me to want to use it. I’ll either get the game without Denuvo on console, wait for it to be removed, or not play it at all.

    source
    • krisevol@lemmy.zip ⁨2⁩ ⁨weeks⁩ ago

      Or have your gaming pc separate from your work pc. If someone hacks my gaming pc, they can have my save files because that’s all they are getting.

      source
  • misk@piefed.social ⁨2⁩ ⁨weeks⁩ ago

    There is 0 details on specifics of how Denuvo was broken. Article goes into detail why Denuvo is bad and not much more (which is also debatable because vast majority of Denuvo implementations do not cause performance impact).

    source
    • Damarus@feddit.org ⁨2⁩ ⁨weeks⁩ ago

      A custom driver emulates the environment of an already activated token to the DRM. It’s comparable to root hiding techniques on Android.

      source
      • misk@piefed.social ⁨2⁩ ⁨weeks⁩ ago

        Thank you, I found it - just commenting on how entirely unhelpful this article was.

        source
        • -> View More Comments
    • apotheotic@beehaw.org ⁨2⁩ ⁨weeks⁩ ago

      Every single aspect of DRM, whether it is denuvo or otherwise, is either neutral or negative for the end user.

      source
      • misk@piefed.social ⁨2⁩ ⁨weeks⁩ ago

        Correct but irrelevant to what I’ve said, which is that the performance impact of Denuvo is usually minimal. There’s a couple of very bad cases that got a lot of publicity but there’s boatloads of Denuvo games running fine.

        source
        • -> View More Comments
  • muusemuuse@sh.itjust.works ⁨2⁩ ⁨weeks⁩ ago

    Sounds useful for reverse-engineering use but impractical for end users.

    source