It’s a sad reality that’s been coming to a head for years now. Thousands of websites are hacked each and every day.
What does that mean for your data and personal information? Simply put, it’s not safe. It’s getting harder and harder to find a safe space online.
Typically when a flaw is discovered on a website, it’s fixed immediately and users would only be exposed for a short while. However, a bug was recently discovered on this gaming site that lingered for over a decade.
Gaming site exposes millions of users
Security researcher Tom Court published details of the bug this week. A security flaw affected all versions of the Steam gaming client that have been released over the last 10 years.
According to Court, the bug would have allowed an attacker to execute malicious code on any of Steam’s gaming clients. It is a remote code execution (RCE) flaw, meaning the attack could be executed remotely.
Watch the following video for a brief description of how the attack works:
If a hacker sends a malformed UDP packet to a victim’s Steam client, it would trigger the bug. That would let the hacker run malicious code and completely take over a victim’s PC.
The problem lies within Steam’s code that dealt with fragmented UDP datagram reassembly. The good news is that after a decade the flaw has finally been patched.
Hackers have no shame, they will target anyone. Even gamers.
Have a question about anything tech related? Kim has your answer! Click here to send Kim a question.
Freaky Android glitch is revealing your private messages
There are some pretty cool features with Android that iPhone users don’t have. One is the fact that you can expand your gadget’s memory by adding an SD card. Unfortunately, there are also some problems that come with Android that you won’t find in iOS. There was actually a glitch recently discovered that could expose your text messages.