Battle Net in security weakness as well¡¦Virus code of IT enterprise solution in ¡®emergency¡¯
Lee Gyung Tak | kt87@ | 2018-01-25 11:10:46

Global well-known IT companies are experiencing a "security fiasco" by continuing to present serious security vulnerabilities in their products and services.

According to the foreign and related industry on January 24, Blizzard Battle.net program, which includes billions of gamers from all over the world,

A team of Google`s white hackers, Zero Team, founder of the company, who recently spotted Intel security vulnerabilities, said the vulnerability could allow a hacker to remotely insert malicious code into a gamer PC in the Blizzard Battle.net Agent program. To the public.

Gamers must install this Battle.net program to enjoy popular Blizzard games online, including World of Warcraft (WoW), Overwatch, Diablo 3, Hairston, and StarCraft. The number of MAUs (monthly active users) accessing this program amounts to 500 million.

This program opens the system`s local host 1120 port and uses the JSON RPC HTTP protocol server. In this process, Omani explains that an attacker can bypass malicious code by bypassing the authentication system with the "DNS binding" technology.

The Omani researcher revealed this to Blizzard last December, but has yet to come up with a solution. "We notified Blizzard of the fact and suddenly stopped contacting him, and the version 5996 agent was simple and lacking patches," he said.

Blizzard said, "We will develop and distribute a powerful fix to eliminate the problem completely." We will keep in touch with Google`s Omani researchers to resolve the issue. "

Meanwhile, Blizzard, as well as companies such as Intel and Apple, who have shaken the ecosystem in their respective areas, are also facing security problems. In particular, Intel, which controls 80 percent of the world`s central processing unit (CPU) market, has suffered from the "meltdown" and "spectrum" vulnerabilities that are vulnerable to hacking on the x86 processor. There is a boycott in some users.

Intel, on the other hand, has announced that it will release an upgrade patch soon to fix the reboot problem and that it should stop using the current version. .

Apple, which has been suffering from the battery degradation issue recently, is showing security flaws in iOS and Mac OS. Last year, IBM security researchers found remote control security vulnerabilities in user interface (UI) `UI` (MIUI) that China Xiaomi applied to its smartphone.

An expert from the security industry said, "The white hackers with superior capabilities are supported by each company, so more vulnerabilities will be discovered in the future." "Since the security issue has raised social interest enough to bankrupt the company, Said, "We need to make efforts to internalize security such as secure coding during product development."

By Lee Gyung Tak kt87@


[ copyright ¨Ï The Digitaltimes ]