When it comes to multiplayer gaming, security is something we all hope is firmly in place. Unfortunately, recent reports about Marvel Rivals have brought some unsettling news. A hacker has uncovered a serious flaw that could allow unauthorized access to players’ devices. Yes, you read that right. This is potentially a breach of privacy.
A blog post from Shalzuth, highlighted by Gameranx, details how this exploit operates. The issue lies in the game’s hotfix patching system, which relies on “remote code execution.” This allows commands to be executed without verifying their origin. The kicker here is that it grants admin privileges under the guise of anti-cheat measures.
If you’re scratching your head over what remote code execution (RCE) entails, think of it as a method hackers use to run harmful scripts on your device. At the same time, you’re blissfully unaware, especially if you’re connected to an unsecured network. Shalzuth even demonstrated this alarming exploit with videos showing how he injected malicious scripts into both his gaming laptop and PlayStation 5 while using the same Wi-Fi connection.
It concerns when a game like Marvel Rivals, which attracts around 200-300,000 daily players on Steam alone, leaves its player base vulnerable like this. With so many eyes on the game, one can only wonder how quickly NetEase will address these issues. Shalzuth has reached out through various channels to inform them about the problem, a responsible move considering the potential fallout.
