![]() The malware is hardcoded for Windows and Linux only. Or a shortcut in %appdata%\Microsoft\Windows\Start Menu\Programs\Startup. ![]() Also check the registry for an entry at HKCU:\Software\Microsoft\Windows\CurrentVersion\Run.Windows: %LOCALAPPDATA%\Microsoft Edge\libWebGL64.jar (or ~\AppData\Local\Microsoft Edge\libWebGL64.jar).Stage 1 of the malware attempts to drop a file into the following locations: Please currently assume that any files on curseforge aren't safe old releases have been found to be modifed. Please be aware that this is only for the known compromised jars there is possibility for more advanced malware to be spread, deleting these files does not mean you are 100% safe. The curseforge profiles are also showing someone logging into them directly. Luna Pixel Studios has stated its very likely someone has found a way to bypass 2fa and login to multiple large curseforge profiles. Fabuously Optimized (Found to not be compromised).The currently confirmed affected mods and modpacks are as follows: We recommend not downloading or updating any mods from CurseForge at the moment, and we will update y'all with the latest news as more information becomes available.Īccording to Luna Pixel Studios "tenos of mods & modpacks, mostly on 1.16.5 1.18.2 and 1.19.2 have been updated to include malicious files" Malware has been uploaded in various projects and it may be a security vulnerability in the CurseForge platform. Multiple groups are reporting CurseForge as compromised. !ALERT! Security vulnerability in the CurseForge platform
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |