X user MacMens010, a cyber security professional, recently shared their own thoughts on the recent Guilty Gear Strive leak that has left users fearing for their safety.
This information was provided via an uploaded document, which can be read here. However we have provided the direct quote below for easy access.
The purpose of this statement was to not only calm people’s fears, but to also help prevent the spread of misinformation.
MacMens Statement:
Background
Hi I am MacMens and cyber security is a passion of mine. My computer science degree has a concentration of cyber security, I have cyber sec related certifications such as the CompTIA Security+ and the CompTIA CySA+. I have been working in IT since I graduated college and have had to keep up with situations such as this for my work.
Why are people freaking out?
A leak hit the airwaves containing the source code to an unreleased build of Guilty Gear Strive and people are scared of the implications. Some people believe the release of the source code will lead to you getting hacked and this has caused a caustic game of telephone.
Will you get hacked because you opened Strive?
No.
Actual concerns of the leak
As of the time I post this we do not know how the leak happened or the nature of the compromise Arc System Works suffered but in a worst case scenario something like a compromised update(see the NotPetya incident) is unlikely to happen as said malicious update would have to go through Steam, Playstation, etc before it hits your system.
What people are actually concerned about is the leaked source code leading to someone figuring out how to hack your PC through Strive with many being worried about the concept of Remote Code Execution(or RCE for short). While with enough monkeys on enough typewriters hackers can pull off insane things if there was an exploit that led to something like RCE people would have already figured it out. Anything serious enough to be worried about would be too valuable, dedicated hackers who could find these exploits would have already found them. On the off chance someone does find an exploit of importance through the source code you STILL don’t need to worry about it as that is not the current version of the game, what got leaked is a dev build that was never going to be released as is.
But what about what happened with BBCF?
If you didn’t know a long time ago BBCF’s Steam port had an RCE exploit. This is why it's important for people not to panic as they are now. If there is a serious exploit in Guilty Gear Strive people would have already figured it out and held on to it until it’s time for them to use it. So to make our lives and the lives of the devs easier you should operate as normal and pay attention if something abnormal happens. Posting about how a friend told you the Chipp player named Rick Owens will take your SSN is helping NO ONE.
Please if you are not a cyber security professional, enthusiast, or any other type of expert you do not need to put your two cents into what is or isn’t safe right now. I would like to spend my time getting ready for Combo Breaker instead of correcting people who are claiming the sky is falling.
Post a Comment