Apparently playing online can cause other players in insert scripts into your game.
Reddit link with info
Maybe it could impact Elden Ring?
Now I'm not sure about playing it on PC.....
-
Ever wanted an RSS feed of all your favorite gaming news sites? Go check out our new Gaming Headlines feed! Read more about it here.
-
We have made minor adjustments to how the search bar works on ResetEra. You can read about the changes here.
Major Dark Souls 3 PC security exploit found (UP: may affect ALL Dark Souls games on PC + possibly Elden Ring) [Update: Fan Patch Up]
- Thread starter Xyer
- Start date
Apparently playing online can cause other players in insert scripts into your game.
Reddit link with info
Maybe it could impact Elden Ring?
Now I'm not sure about playing it on PC.....
This could be in Elden Ring as well, but it also could be specific to this game. We will find out!
Invade me if old, didn't see a post about this. New exploit found that allows an invader to take control of your PC via Dark Souls 3 and seems like it could affect Elden Ring as well. Need to play offline to avoid risk. I'm not on the Discord from the screenshot so don't have the "prevention" method but I imagine the only way to be safe is to stay offline until this is fixed.
/r/EldenRing: It is now possible for Dark Souls 3 invaders to run code on your PC without permission. AKA RCE, Remote Code Execution. This same hack is possible in Elden Ring.
Exploit @ 1:20:10
/r/EldenRing: It is now possible for Dark Souls 3 invaders to run code on your PC without permission. AKA RCE, Remote Code Execution. This same hack is possible in Elden Ring.
Exploit @ 1:20:10
The people that streamer is playing with don't give a FFUUuuu
Thousands of people stream this game all the time, it's possible. Also, Twitch streamers can be specifically targeted rather easily as well.
Just saw a reddit thread on this, https://www.reddit.com/r/Eldenring/comments/s9wai2/it_is_now_possible_for_dark_souls_3_invaders_to/
Supposedly Blue Sentinel doesn't protect you from it.
Supposedly Blue Sentinel doesn't protect you from it.
Someone on the reddit post said that it's one specific user that has access to the exploit and is targeting bigger streamers to get eyes on the situation. The outcome in this case was not malicious, just the Windows narrator reading off some copy-pasta. But the point is that it was able to execute runtime commands on the system remotely.
That's nuts. I thought the worst thing Souls hackers can do is soft-ban you from online by giving you hacked weapons that trip off anticheat detection.
A few months back I was thinking of restarting Dark Souls 3 so I looked into mods to block invasions, since I knew people have been up to nefarious shit like this for a long time now. Apparently there's a community mod called Blue Sentinel which basically allows you to police invasions by detecting and booting cheaters. Which is cool but...the fact that this exists just made me decide to maybe not bother playing the game online at all, lol.
this seems like kinda a big deal?? never played a souls game offline before but Elden Ring will be my first
If that's legit, that's some serious shit. Hope From actually patches DS3. Elden Ring I'm not so worried about.
Two quick questions, how do we know that Elden Ring is also affected, and why did it take so long to discover this in DS 3?
Yeah I play Souls games in offline mode because theres all kind of shitty exploits people can do and From doesn't care. Like the one where invaders can force a hacked dagger into your inventory that gives you souls which sets off the servers flags and softbans your whole ass account. Or one that sends players to NG+ instantly and locks you in the opening area.
The community had to make their own anti-cheat to deal with this crap.
The community had to make their own anti-cheat to deal with this crap.
Just skimming the Reddit, this is (not yet) as serious as it sounds, and From have acknowledged it:
Here is the story as told by reddit (grain of salt):
- Hacker finds vulnerability and contacts Fromsoft but gets no response. This happened some time ago.
- At some point, they confirm that this problem exists in Elden Ring.
- The hack is demonstrated on live stream in Dark Sould 3 and is once again reported to From/Bandai through Discord. This is to create awareness and force Fromsoft to act.
- The person behind this has not released it to the public and is working with modders to fix Dark Souls 3.
So, basically all we can do is to hope that this is fixed before release of Elden Ring.
- Hacker finds vulnerability and contacts Fromsoft but gets no response. This happened some time ago.
- At some point, they confirm that this problem exists in Elden Ring.
- The hack is demonstrated on live stream in Dark Sould 3 and is once again reported to From/Bandai through Discord. This is to create awareness and force Fromsoft to act.
- The person behind this has not released it to the public and is working with modders to fix Dark Souls 3.
So, basically all we can do is to hope that this is fixed before release of Elden Ring.
From Software should be sued for negligence not fixing the issue after someone proves the exploit is real and can cause major damage. How careless can they be?
Apparently a From Software rep acknowledged the issue in the Elden Ring Discord server. Here's hoping they also correct it in Dark Souls 3.
It's unfortunately very common for big companies to ignore exploits like this even when it's reported to them directly. Off the top of my head, I know Valve and Apple have both done the same only to finally patch the issue when the exploit was publicly released.
Last edited:
As I understand things, the exploit was only proven and made public a few hours ago. We still have yet to find out how Fromsoft will respond. My guess is that they will take down the matchmaking servers.
