0
24

[–] diodine 0 points 24 points (+24|-0) ago 

Having reverse engineered much of valve's anticheat (specifically VAC2 which is loaded entirely from usermode, VAC3 which loads modules into the steam service running as administrator), I've a few things to say:

  • VAC is basically commanded remotely to load a module and then call functions inside it. I've never seen VAC run while not in game, although steam can in theory command it whenever.

  • Valve is generally very good in privacy in their anticheat, especially compared to other anticheats on the market. For example, one VAC3 module I've reverse engineered looks for windows with specific titles - first it scans every window on client side checking if they match a hash (SHA1 if memory serves correct), and only if it matches does it then send the actual title unhashed to valve - this is a good design choice IMO as it means false positives such as collisions are avoided and it also means a malicious person can't easily determine what the targeted window name is.

  • VAC can monitor all programs loaded, but so can the regular user mode steam application, do to how Windows allows things like ReadProcessMemory from any program from the same user. Like I said before though, I've yet to see a VAC3 module (VAC2 hasn't been updated in 7 or 8 years) that scans and uploads your entire memory

  • I have logged VAC3 requests and responses and have never seen anything more intrusive beyond running EXE names.

  • The DNS issue was a big deal back in the day, but to my knowledge Valve no longer uses that module.

Now on to the other points:

Steam users have been deceived into opening malacious screenshots containing executable SCR files which target the Steam client.

This was a scam back in the day, where someone would add you, saying "Hey can u check out this epic screenshot? epichost.com/notmalware.scr". Users would click it, the browser would ask "would you like to open or save this?" and people would click open, not aware that on windows SCR files are just EXE files. This is not steams fault. There are still other file types you can use, just SCR makes naive people think SCReenshot.

Malware targeting gamers, Eskimo, quietly installs in the background and can take control of a user's Steam account.

So can any other RAT. Just because someone wrote malware specifically targeting just one program and not the whole OS does not mean the program is bad.

1
12

[–] derram 1 points 12 points (+13|-1) ago 

https://unvis.it/https://www.gizmodo.com.au/2014/02/if-you-use-steam-valve-might-be-tracking-every-website-you-visit/ :

If You Use Steam, Valve Might Be Tracking Every Website You Visit | Gizmodo Australia

https://unvis.it/https://www.gizmodo.com.au/2014/02/if-you-use-steam-valve-might-be-tracking-every-website-you-visit/ :

If You Use Steam, Valve Might Be Tracking Every Website You Visit | Gizmodo Australia

https://unvis.it/https://motherboard.vice.com/en_us/article/wnx5bm/nsas-hacker-in-chief-we-dont-need-zero-days-to-get-inside-your-network-rob-boyce :

NSA's Hacker-in-Chief: We Don't Need Zero-Days To Get Inside Your Network - Motherboard

https://unvis.it/https://motherboard.vice.com/en_us/article/wnx5bm/nsas-hacker-in-chief-we-dont-need-zero-days-to-get-inside-your-network-rob-boyce :

NSA's Hacker-in-Chief: We Don't Need Zero-Days To Get Inside Your Network - Motherboard

https://archive.fo/9JQRW :

Valve Wants To Know What You've Got Installed On Your PC

https://archive.fo/9JQRW :

Valve Wants To Know What You've Got Installed On Your PC

https://archive.fo/fWQXF :

Forbes Welcome

https://archive.fo/m9RT3 :

Steam user violates subscriber agreement, loses $1,800 in games | Ars Technica

https://snew.github.io/r/Steam/comments/45exvl/can_we_please_have_an_option_to_turn_off_steams/) :

Can we *PLEASE* have an option to turn off steam's "naughty" word censor? I'm 27 years old, I'm perfectly okay with seeing the word "fuck". : Steam

https://archive.fo/g2tWN :

Valve: Steam's Offline Mode Is Meant To Be 'Indefinite'... But It's Not | Kotaku Australia

https://archive.fo/g2tWN :

Valve: Steam's Offline Mode Is Meant To Be 'Indefinite'... But It's Not | Kotaku Australia


This has been an automated message.

[–] [deleted] 1 points 11 points (+12|-1) ago 

[Deleted]

2
7

[–] classy_nigger 2 points 7 points (+9|-2) ago 

You're probably OK using GOG.

0
11

[–] ZYX321 0 points 11 points (+11|-0) ago  (edited ago)

Now compare it to other vendors' platforms.

Edit: Much of this can be attributed to VAC. And many of the things are "could" type arrangements. A list that includes "forces new subscribers into an agreement" is silly. The best games for privacy are obviously single player games that have no DRM. This is silly.

[–] [deleted] 0 points 4 points (+4|-0) ago 

[Deleted]

0
3

[–] diodine 0 points 3 points (+3|-0) ago 

They don't do that anymore, but you can check for cheats easily by checking if there's a DNS entry for "hidden-cdn.gamehacks.com".

0
6

[–] Buff_Awesome 0 points 6 points (+6|-0) ago 

I use GOG for my purchases. No DRM or anything. Just buy and it's yours.

0
4

[–] the_sharpest_knife 0 points 4 points (+4|-0) ago 

Meh. Your os will rat you out long before any of the programs on it will. Even if using a live os. People who try to obscure their identity online most often get made by sonic emissions picked up by another network connected device with a mic.

0
0

[–] DayWalker 0 points 0 points (+0|-0) ago 

Can I get more detail on that?

0
1

[–] the_sharpest_knife 0 points 1 points (+1|-0) ago 

https://www.wired.com/2016/11/block-ultrasonic-signals-didnt-know-tracking/

https://newatlas.com/sonicnotify-audio-signals/21385/

https://www.theatlantic.com/technology/archive/2015/11/your-phone-is-literally-listening-to-your-tv/416712/

https://patents.google.com/patent/US20120295560

Most people try to mask the identity of only the device they're using to do something illegal with. They usually don't think twice about their router, phone, tablet, television, smart home device, or even another PC that could simply pick up the signal of what you're doing. Almost everything we use dials home at some point and it's been in our faces for quite a while how much the NSA/Mossad/Mi6(same thing) are pre-embedded into almost every single one of those devices.

Ethics is the first chapter of many engineering books for a reason. There is literally anything the creator of the software or device you use can do to monitor or exploit you.

0
0

[–] crustyjuggler 0 points 0 points (+0|-0) ago 

He's talking about spy tools used by the NSA and similar. Malware sends and recives data over mic and speakers to get around air gapped devices. It's really nothing to worry about unless you're an imminent threat or work in Iran's nuclear facilities. While it exists, people aren't putting in manpower to directly surveil us with these methods. That's just tinfoil hattery.

0
2

[–] LDIP 0 points 2 points (+2|-0) ago 

Feels bad man

0
1

[–] uCameFromRedditNotMe 0 points 1 points (+1|-0) ago 

Keep up the good work.

You're an asset to the community

load more comments ▼ (7 remaining)