Apparently playing online can cause other players in insert scripts into your game.
Reddit link with info
Maybe it could impact Elden Ring?
Now I'm not sure about playing it on PC.....
Invade me if old, didn't see a post about this. New exploit found that allows an invader to take control of your PC via Dark Souls 3 and seems like it could affect Elden Ring as well. Need to play offline to avoid risk. I'm not on the Discord from the screenshot so don't have the "prevention" method but I imagine the only way to be safe is to stay offline until this is fixed.
/r/EldenRing: It is now possible for Dark Souls 3 invaders to run code on your PC without permission. AKA RCE, Remote Code Execution. This same hack is possible in Elden Ring.
Exploit @ 1:20:10
The video of the exploit "happening" in real-time feels weirdly suspect.
Someone on the reddit post said that it's one specific user that has access to the exploit and is targeting bigger streamers to get eyes on the situation. The outcome in this case was not malicious, just the Windows narrator reading off some copy-pasta. But the point is that it was able to execute runtime commands on the system remotely.The video of the exploit "happening" in real-time feels weirdly suspect.
It is
lol. not bad
As of this moment this exploit isn't actually public. The only 2 people who have it are the blue sentinel dev and the person who made it. But from what I've read from multiple people is that the person who made this exploit isn't actually doing it for the bad. He's trying to help and get attention to this issue.
So as of now it's not dangerous but who knows how long this will last.
Also I've read somewhere that the guy who made the exploit used it on a streamer to test it. Honestly if that's true then wtf was he thinking.
UPDATE : Fromsoftware have acknowledged this issue in their Discord Server. So it seems like they're actually doing something to fix it. Thank god.
Here is the story as told by reddit (grain of salt):
- Hacker finds vulnerability and contacts Fromsoft but gets no response. This happened some time ago.
- At some point, they confirm that this problem exists in Elden Ring.
- The hack is demonstrated on live stream in Dark Sould 3 and is once again reported to From/Bandai through Discord. This is to create awareness and force Fromsoft to act.
- The person behind this has not released it to the public and is working with modders to fix Dark Souls 3.
So, basically all we can do is to hope that this is fixed before release of Elden Ring.
The true Dark Souls starts here
It's unfortunately very common for big companies to ignore exploits like this even when it's reported to them directly. Off the top of my head, I know Valve and Apple have both done the same only to finally patch the issue when the exploit was publicly released.From Software should be sued for negligence not fixing the issue after someone proves the exploit is real and can cause major damage. How careless can they be?
As I understand things, the exploit was only proven and made public a few hours ago. We still have yet to find out how Fromsoft will respond. My guess is that they will take down the matchmaking servers.From Software should be sued for negligence not fixing the issue after someone proves the exploit is real and can cause major damage. How careless can they be?