GameDev Pulse
A worthy article for anyone making a serious Godot game: https://www.reddit.com/r/godot/s/rooXKqJtnj #GodotEngine@GameDEV
Let's protect your Godot Games even further:
Godot Secure transforms your Godot engine into a fortress for game assets. By integrating Camellia-256 encryption with a unique security token system.
This solution creates a cryptographically unique engine build that prevents generic decryption tools from accessing your game assets.
https://github.com/KnifeXRage/Godot-Secure/
#GodotEngine@GameDEV
#Security@GameDEV
Godot Secure transforms your Godot engine into a fortress for game assets. By integrating Camellia-256 encryption with a unique security token system.
This solution creates a cryptographically unique engine build that prevents generic decryption tools from accessing your game assets.
https://github.com/KnifeXRage/Godot-Secure/
#GodotEngine@GameDEV
#Security@GameDEV
β€17π8
Be careful with Asus: they have more holes than that funky Apple cheese grader case:
https://www.youtube.com/watch?v=Vy_KWP04pfs
#Asus@GameDEV
#Security@GameDEV
#Hardware@GameDEV
https://www.youtube.com/watch?v=Vy_KWP04pfs
#Asus@GameDEV
#Security@GameDEV
#Hardware@GameDEV
YouTube
The ASUS Dumpster Fire
Sponsor: Thermaltake TR100 mini-ITX Travel Case on Amazon https://geni.us/Yn9DXb
ASUS' decisions to force unwanted software onto users has put them at risk, like with Armoury Crate, MyASUS and DriverHub, and even its "AI" security features in its routers.β¦
ASUS' decisions to force unwanted software onto users has put them at risk, like with Armoury Crate, MyASUS and DriverHub, and even its "AI" security features in its routers.β¦
π±5
Yay, safety!
Fun fact: the issue has been discovered before, patched out, but still replicated after the patch. Now they are patching it again.
#Security@GameDEV
#Microsoft@GameDEV
Fun fact: the issue has been discovered before, patched out, but still replicated after the patch. Now they are patching it again.
#Security@GameDEV
#Microsoft@GameDEV
π8π±4
GameDev Pulse
https://fightchatcontrol.eu #Europe@GameDEV #Security@GameDEV
βHow to kill a parent with a forkβ is a very different type of Google search, if you are a system administrator or a child:
https://www.youtube.com/watch?v=3NyUgv6dpJc
https://fightchatcontrol.eu
#Europe@GameDEV
#Security@GameDEV
https://www.youtube.com/watch?v=3NyUgv6dpJc
https://fightchatcontrol.eu
#Europe@GameDEV
#Security@GameDEV
YouTube
GDPR meant nothing: chat control ends privacy for the EU
https://fightchatcontrol.eu/
https://www.youtube.com/watch?v=NE06Tw9UWM8
https://www.patrick-breyer.de/en/chat-control-internal-documents-show-how-divided-the-eu-member-states-are/
https://www.iccl.ie/news/an-garda-siochana-unlawfully-retains-files-on-innocentβ¦
https://www.youtube.com/watch?v=NE06Tw9UWM8
https://www.patrick-breyer.de/en/chat-control-internal-documents-show-how-divided-the-eu-member-states-are/
https://www.iccl.ie/news/an-garda-siochana-unlawfully-retains-files-on-innocentβ¦
β€5
Fake emails helped hackers to gain access to NPM packages with 2 billion weekly downloads. Yep, I never trust NPM, PIP, and so on. They are a huge hole in security.
#JavaScript@GameDEV
#Security@GameDEV
#JavaScript@GameDEV
#Security@GameDEV
π«‘9β€2
Be very careful with GitHub emails: scammers send out phishing messages to all active GitHub users!
1. No, they are not from GH
2. No, you aren't getting $$
3. Yes, believing this would be dumb, but apparently thousands did and it's been out for a few days only
https://github.com/orgs/community/discussions/174380
#Hackers@GameDEV
#Security@GameDEV
#GitHub@GameDEV
1. No, they are not from GH
2. No, you aren't getting $$
3. Yes, believing this would be dumb, but apparently thousands did and it's been out for a few days only
https://github.com/orgs/community/discussions/174380
#Hackers@GameDEV
#Security@GameDEV
#GitHub@GameDEV
π5β€1π1
Recently, Unity have found a security issue that affects all projects made on all versions of the engine since 2017.1:
Applications that were built using affected versions of the Unity Editor are susceptible to an unsafe file loading and local file inclusion attack, depending on the operating system.
It means, that thousands of games and game assets are affected. And the majority of them WILL NOT BE FIXED, since they are abandoned or on low maintenance mode. So, playing Unity games may be a security issue now.
https://unity.com/security/sept-2025-01
#Unity@GameDEV
#Security@GameDEV
Applications that were built using affected versions of the Unity Editor are susceptible to an unsafe file loading and local file inclusion attack, depending on the operating system.
It means, that thousands of games and game assets are affected. And the majority of them WILL NOT BE FIXED, since they are abandoned or on low maintenance mode. So, playing Unity games may be a security issue now.
https://unity.com/security/sept-2025-01
#Unity@GameDEV
#Security@GameDEV
π±12β€2π2π₯1π1
Almost everyone who contacted the Discord support team during the last couple of years, is affected:
Discord was using a 3rd party support service and they leaked almost everything they could, including photos and documents provided.
They pretend that only a few people were affected, but it seems that everyone who contacted their support got the warning.
In the meantime EU is still trying to implement Chat Control 2.0 with extra backdoors to your files and messages.
#Security@GameDEV
#Discord@GameDEV
#SocialNetworks@GameDEV
Discord was using a 3rd party support service and they leaked almost everything they could, including photos and documents provided.
They pretend that only a few people were affected, but it seems that everyone who contacted their support got the warning.
In the meantime EU is still trying to implement Chat Control 2.0 with extra backdoors to your files and messages.
#Security@GameDEV
#Discord@GameDEV
#SocialNetworks@GameDEV
π8π±8
GameDev Pulse
A dude with a made-up role is complaining that people aren't buying his crap... #Microsoft@GameDEV #AI@GameDEV
LMAO, do you know that Microsoft found out and confirmed, that AI helpers tend to install you malware and turn off your security?
(If they get special commands from reading your emails with Cross-Prompt Injection or XPIA)
https://www.youtube.com/watch?v=sXz3Ftlyp44
#Security@GameDEV
#AI@GameDEV
(If they get special commands from reading your emails with Cross-Prompt Injection or XPIA)
https://www.youtube.com/watch?v=sXz3Ftlyp44
#Security@GameDEV
#AI@GameDEV
YouTube
Does anyone want an 'agentic' Windows?
Black Friday Mega Sale β Get the Wolfbox MF200 Air Duster and Save Up to 30%!(Nov 20βDec 2οΌ
Amazon |Code:WBMFSAVE5β https://www.amazon.com/dp/B0FPMPBSLL?maas=maas_adg_878555AC7868C23FC40829F0744AE48D_afap_abs&ref_=aa_maas&tag=maas
Official Site | Code: WBBESTGEARβ¦
Amazon |Code:WBMFSAVE5β https://www.amazon.com/dp/B0FPMPBSLL?maas=maas_adg_878555AC7868C23FC40829F0744AE48D_afap_abs&ref_=aa_maas&tag=maas
Official Site | Code: WBBESTGEARβ¦
β6π1π1
There's a CVE-2025-55182:
Pre-authentication remote code execution vulnerability exists in React Server Components versions 19.0.0, 19.1.0, 19.1.1, and 19.2.0 including the following packages: react-server-dom-parcel, react-server-dom-turbopack, and react-server-dom-webpack. The vulnerable code unsafely deserializes payloads from HTTP requests to Server Function endpoints.
But that's not the crazy part: hackers created several forked tools for fake CVE inspection, that actually steals the data of users and loads you malware.
Do not launch GitHub repos mindlessly!
#Hackers@GameDEV
#Security@GameDEV
Pre-authentication remote code execution vulnerability exists in React Server Components versions 19.0.0, 19.1.0, 19.1.1, and 19.2.0 including the following packages: react-server-dom-parcel, react-server-dom-turbopack, and react-server-dom-webpack. The vulnerable code unsafely deserializes payloads from HTTP requests to Server Function endpoints.
But that's not the crazy part: hackers created several forked tools for fake CVE inspection, that actually steals the data of users and loads you malware.
Do not launch GitHub repos mindlessly!
#Hackers@GameDEV
#Security@GameDEV
β6π3
Okay, a new way to fight cheaters in your game: STOP SELLING IT!
#VR@GameDEV
#Security@GameDEV
#WTF@GameDEV
#VR@GameDEV
#Security@GameDEV
#WTF@GameDEV
π20
Rainbow Six Siege has been hacked in several attempts by different groups.
First ones got access to the game server admin panel: they banned people and gave away $300m+ worth of goods for free. It seems that hackers banned Ubisoft employees while Ubisoft banned "people with suspicious amounts of currency". Most of these bans are rolled back now.
Then a few more groups seemingly got the full access to all the sources of the game. This still has to be confirmed, since Ubisoft is only discussing the admin access. They temporarily shut down the marketplace and secondary ban system that has been breached.
The security issue is not coming from Ubisoft, it's MongoBleed: MongoDB Zlib Vulnerability (CVE-2025-14847), affecting millions of servers worldwide.
#Ubisoft@GameDEV
#Security@GameDEV
#Hackers@GameDEV
First ones got access to the game server admin panel: they banned people and gave away $300m+ worth of goods for free. It seems that hackers banned Ubisoft employees while Ubisoft banned "people with suspicious amounts of currency". Most of these bans are rolled back now.
Then a few more groups seemingly got the full access to all the sources of the game. This still has to be confirmed, since Ubisoft is only discussing the admin access. They temporarily shut down the marketplace and secondary ban system that has been breached.
The security issue is not coming from Ubisoft, it's MongoBleed: MongoDB Zlib Vulnerability (CVE-2025-14847), affecting millions of servers worldwide.
#Ubisoft@GameDEV
#Security@GameDEV
#Hackers@GameDEV
1π«‘8π4π±2π₯1
GameDev Pulse
Rainbow Six Siege has been hacked in several attempts by different groups. First ones got access to the game server admin panel: they banned people and gave away $300m+ worth of goods for free. It seems that hackers banned Ubisoft employees while Ubisoftβ¦
The same exploit seemingly allowed hackers to wipe Escape From Tarkov accounts, including some media people, who lost their data while streaming.
#Security@GameDEV
#Hackers@GameDEV
#Security@GameDEV
#Hackers@GameDEV
π«‘8π₯1
If you are making a game on a custom engine or modified one, it will not pass Windows Smart Screen. The signature can be obtained by releasing it to MS Store or Steam, but do you know you can simply send your game to Microsoft?
https://www.microsoft.com/en-us/wdsi/filesubmission β it will take months, usually, but still better than nothing.
#Security@GameDEV
#Microsoft@GameDEV
https://www.microsoft.com/en-us/wdsi/filesubmission β it will take months, usually, but still better than nothing.
#Security@GameDEV
#Microsoft@GameDEV
π9π€3π1