Earlier this week Discord accounts were stolen steam accounts were gone and this new exploit in modern Minecraft is possibly as dangerous as the lock 4J incident but instead of that people were debating about this new Eula and actual players lost their accounts and it’s as If no one cared this is a deep dive and an investigation into bleeding pipe a new exploit a zero day exploit that doesn’t need your permission to run code and programs to steal all your data and later in this video we will show you what actually happens when you get Hacked and talk to the first person that had happened too so strap in folks because this time we are diving very deep into this new history block of Minecraft why is bleeding pipe the exploit being talked about more dangerous than the malware infecting your PC well it’s because it doesn’t need to infect Anything see fracturizer worked by downloading itself via an infected mod onto your computer basically it was a trojan horse but with pipe you don’t need to download anything if you are running modded Minecraft as a server then you are targetable in other words if fracturizer is a virus bleeding pipe Is a bullet one stroke of a keyboard and you lose your Discord Steam and anything else you might be logged into and the scary part it can’t really be detected by anti-viruses only a dedicated group of researchers like the mmpa who made this blog post and likely endangered a Lot of people by not doing it right and serialization is bad who made this GitHub page that you should really read but enough scaremongering now the fact is if you are not playing mods from 1.12 or lower the chances are that you’re likely not at risk and likely is the key Word here as it’s not an issue with Forge itself but job and some mods as late as 1.20 have been found to be affected but why is it important now I mean 1.12 was released in 2017. so why care about it now well according to my community a sizable amount of people Still play 1.12.2 mod packs to this day and by the way I do a lot of community polls and posts so if you want to be part of my videos be sure to check out that tab well apparently it could theoretically be exploited in newer versions of the same mod too as this Isn’t just a Minecraft exploit like the log 4J incident this is a wider issue with Java itself as it is the object input stream or ois that is causing issues which is too in-depth for this YouTube video but basically just see it as your insecure piece of code this Insecure piece of code is usually used to communicate between you and the server but it can also be used by malicious users to launch code on your client in other words it’s kind of like a zero day exploit actually in fact it is a zero day exploit as it can take Over your computer but this has been around since 2013 and had been discovered in the Java World way earlier than 2013. Why did no one fix this well to be honest the majority of developers just didn’t care I mean who cares about an old version of your mod that got Exploited and to be honest I would be the same we can’t expect a volunteer developer who makes their mods out of fun to update their 7 year old mod because of a fake exploit that has never been done before but let’s actually take a look as to what happens when you get exploited This video released by JoJo Jobo currently has 757 views as of writing which is absolutely nuts when you realize what happens in it so as you can see he’s just walking around on his public server having fun when death mod joins the stream and gets the public IP After which they join the server themselves under another name after 10 minutes they get raided by rusanon who likely is an accomplice and here it begins now these visuals on the screen are not by the hacker by the way it’s just how he runs his stream he has a Little website for it it’s very cool but let’s skip a little bit forward because here is where the fun ends as both him and the other player on that server lose their Discord accounts and get their logging data put in the chat now put yourself in his position you’re just Having fun and as he told it he was getting near the end of a Long play through of a mod pack he liked and then boom your afternoon fun turns into a worse nightmare as the hacker tells jopo to attack his holder for a file and it’s Actually there now I have to track down Oppo and had an interview with him and asked permission to use his video in mind but I do want to say thank you to Jobo to share his experience with me um we get raided by a guy named a serenade Rusan which is a he’s like a Russian Minecraft streamer he get raided and they’re like is it an open server and I’m like yeah of course and invited him in and this player joins the server this what we now know is a malicious player joined the server and for a while just Walking around looking at things and then I guess they just kind of walked off and nobody really noticed and 10 minutes later they’re like go to these coordinates and I go to the coordinates and there’s like a ton of like creative mode items and stuff like end game stuff That we definitely haven’t unlocked yet and I was at first I was like okay so I’m guessing there’s some like exploit where you can get yourself into creative mode or whatever like or some weird thing with with jei or something so after that he started sending like the Server started sending messages to the game chat as server like somebody had typed it into the server console um and that’s what I’m was like hushed the hacker has told joppo that he is the first to find this exploit and use it which is incredible when you realize it Has been in Java for over 10 years luckily the hacker wasn’t too malicious this time and gave back his account with no issue this doesn’t excuse the fact that he basically ruined someone’s day but this is the cost of not fixing these things unsuspecting people who want to Play their favorite mod pack are gonna get invaded and pwned hell I love Tekkit classic I play it from time to time and I’m scared this will happen to me if I make a server but why is no one else let me roll a clip of my interview with jopo About the community’s reaction when he showed them what happened that’s the thing that just confused me the most was like I thought we had been Zero game I thought this was something that nobody had known about based on what I you know when I started Googling it but I was Trying to find anything at all saying there’s an exploit here I could not find anything until somebody eventually came to me with a GitHub issue that has probably been viewed like a dozen or so times of hey is an exploit here and the model out there is like well I’m not Going to fix it for this version but I have it fixed in the newer version and it’s like you know how many people play 1.12 by packs like that’s like a really popular version for my bags first people were very like suspicious they were like okay it’s probably not a problem with Minecraft it’s yeah or you know you’re not using the most updated version of the mod pack I think I was like one experimental version behind or something they didn’t really trust that there was anything going on and so I put the the VOD out or the video and had it unlisted The majority of people I talked to were very much like not that interested in it or didn’t think it was that big of a deal but I guess there were other people behind the scenes that I see I didn’t know about so once they saw the video more people were definitely like This whole thing could have been prevented if they had taken it more seriously and I’m torn between should we even blame the hobby deaths for this or should the blame be on this not being widely known and when someone comes forward with this sort of massive thing Why are we so quick to brush it aside and focus on other things like the EULA changing so what should you do well until all mods are fixed either private your server with a white list or use pie blockers because server scanners like koppenheimer are widespread now and you Can easily modify them to tell you if a server is running outdated software and if it’s running one of the vulnerable mods that have not been patched yet and pipelager while effective I don’t really trust a single plugin to keep me safe at all after all this comes from the people Who put millions of people at risk because they published early without a solution like I know when an exploit gets found it’s usually not the etiquette to publicize immediately either fear of people being targeted against so why didn’t they do that I can see the comments already coming oh but Just don’t play online and you’re safe but well that’s not the point the point is we have the giant gaping hole in Minecraft code and we didn’t fix it another thing I hear a lot is oh it’s only 1.12 but can you really guarantee that have you gone through every mod and Checked if it doesn’t use ois and are you really going to sit there and check it because I’m not and you you aren’t either we just want to play our little block game nothing prevents ois from being used in Minecraft and there’s a lot of devs out there who are Self-taught and they often don’t know the danger of these classes but what if I told you this goes even further than 1.12 because any mod developer who just keeps ois in the mod is putting people at risk but maybe it’s not every mod entirely see not all mods are vulnerable As they do need to pass data into the serializer if it doesn’t do that you are safe but then again you can easily trick the server into doing that but there are new mods being developed to stop this exploit from happening pipelocker being a good example But after all I’ve just said I think this is actually a good Showcase of an exploit being handled wrong and not by the people who abused it but by the people not recognizing it and taking the steps to ensure it doesn’t happen again so what’s the conclusion of all this or Devs just lazy not fixing their software earlier is Java to blame well it’s neither I don’t think we should start blaming people who do modding as a hobby but we need to take step in order to get more people to recognize the dangers of this exploit all you can know them for Sure right now is that if you’re playing mod at Minecraft have pipe blocker installed and make sure you’re subscribed for some more oh and if you’re already going to sub to me go subscribe to joppo he’s pretty cool but for now I was a lunar you’ve been Awesome and I’ll see you in the next one Thank you Video Information
This video, titled ‘Minecraft Mods are Dangerous Again… (Bleeding Pipe)’, was uploaded by CygnusMC on 2023-08-09 18:00:25. It has garnered views and [vid_likes] likes. The duration of the video is or seconds.
Keep yourself safe! Want more? Check here… -=Socials=- Second Channel: @LunarVods Twitter: https://twitter.com/Cygnus_MC …