Modern Warfare 3, CryEngine 3. Exploited, Hacked
The Power of Community Security Conference, held in Seoul, has allowed two researchers to show their findings of "critical vulnerabilities" in the game and Crytek's engine.
Luigi Auriemma and Donato Ferrante, security consultants for ReVuln, presented their research. Including: a video example of a denial-of-service attack troubling Call of Duty: Modern Warfare 3, as well as a server level hack against CryEngine 3, through the game 'Nexuiz'. The latter of which allowing the disclosure of the personal detail of those going through the hacked server.
The pair will present an advisory on how to tackle these two issues tomorrow, as well as offering to give assistance to Activision. Ferrante stated: "In general, game companies don’t seem to be very focused on security but rather on performance of the game itself. Adding security checks can slow down games, and if the companies don’t deem the problem a very critical issue, it will usually be ignored.”