There’s something incredibly satisfying about watching your virtual metropolis flourish under your careful guidance. However, recent events surrounding Cities: Skylines 2 have reminded us that we must remain vigilant even in our beloved digital worlds. A malware incident concerning a specific mod has raised eyebrows and concerns among players. So, let’s take a closer look at what happened and how you can protect yourself while continuing to create those stunning skylines.
Malware Incident Summary
A lil somethin somethin: You can find the details for this event on the announcement page here.
This threat is a DLL hijacking attack specifically aimed at stealing information from Exodus cryptocurrency wallets. It looks like a malicious DLL file (fastmath.dll) was placed within the Traffic mod directory, a common addition for enhancing gameplay. When players launched their game, the executable loaded this file, marking the beginning of its nefarious activities.
Notes and what to do
Once activated, this malicious DLL searches for Exodus crypto wallets stored on your computer within the AppData local folder. But here’s where it gets reassuring:
- If you don’t have an Exodus wallet installed on your device, you’re safe from any further impact!
- The only mod affected was “Traffic,” and thankfully, developers have secured their author’s account to prevent future incidents.
The developers said the following
If you did not start playing with this compromised version of the Traffic mod or do not use an Exodus wallet, there’s no need to worry! However, if you do have an Exodus wallet:
- We recommend manually deleting the secondary DLL file located at:
C:Users\AppDataLocalexodusapp-profapi.dll - For more information regarding potential compromises to your wallet, check out their FAQ at
Exodus FAQ. - You can also refer to their official guide for general security measures:
Exodus Security Practices.
A Word About Modding Safety
While mods can significantly enhance our gaming experience by introducing new features or improving existing ones, they come with inherent risks. The developers are committed to minimizing these risks but acknowledge that complete prevention is challenging given malware’s rapid evolution.
The takeaway? Always exercise caution when using code mods.
