1. Trouble with the game?
    Try the troubleshooter!

    Dismiss Notice

  2. Issues with the game?
    Check the Known Issues list before reporting!

    Dismiss Notice
Support Troubleshooter Known Issues

BeamNG mods are not safe anymore

Discussion in 'General Discussion' started by BlazerNG, Jun 4, 2024.

  1. BlazerNG

    BlazerNG
    Expand Collapse

    Joined:
    Apr 10, 2023
    Messages:
    34
    Hello everyone,

    I just want to quickly warn you guys. YouTube recommended me this video today. It seems like there is a mod that contains a malicious LUA file. Unfortunately, author of the video didn't mention any specific mod and the original author of the mod is also unknown. So, if anybody knows more about what is going on, please, let me know. Stay safe guys.
     
    #1 BlazerNG, Jun 4, 2024
  2. ghost_cauli

    ghost_cauli
    Expand Collapse

    Joined:
    Jul 14, 2022
    Messages:
    1,189
    Fearmongering unless proven otherwise.
     
    #2 ghost_cauli, Jun 4, 2024
    • Agree Agree x 1
  3. thetrainguy

    thetrainguy
    Expand Collapse

    Joined:
    Mar 4, 2024
    Messages:
    280
    Mods off of unsafe sites have a better chance of malware but anything on the repo is checked which lowers the chances anything is possible but it would be EXTREMELY hard.
     
    #3 thetrainguy, Jun 4, 2024
    • Agree Agree x 1
  4. Ananel81

    Ananel81
    Expand Collapse

    Joined:
    Sep 7, 2021
    Messages:
    1,240
    To stay safe, the better solution is to stay on the BeamNG forums. Third-party websites do not have any security moderation. (ModLand moderation is only there to remove mods when they have a copyright claim, but they don't take care of anything else.)
     
    #4 Ananel81, Jun 4, 2024
    • Like Like x 2
    • Agree Agree x 2
  5. AlexKidd71

    AlexKidd71
    Expand Collapse

    Joined:
    Mar 16, 2022
    Messages:
    492
    I saw the video this morning. But it’s not a new threat. It was possible all the time. You should at least check every mod you download from untrusted source with bitdefender. Just right click the zip and run the check. Or check for Lua files and visually check.
     
    #5 AlexKidd71, Jun 4, 2024
    Last edited: Jun 5, 2024
    • Agree Agree x 1
  6. daniel-w

    daniel-w
    Expand Collapse
    BeamNG Team

    Joined:
    Jan 28, 2017
    Messages:
    282
    I'm currently working on trying to patch this, mostly because multiplayer mods exist and you don't want to join a server and get hacked.. I've got a decent working thing right now, but it's most likely far from solid.
    I basically replace `ffi.cast` with my own, and it does some extra checks if the second argument is of type "cdata" or a "number". It then checks whether that address is within the range of the game executable or the other imports.

    I did have it so it compared the address with known functions like "GetProcAddress", but I figured that since the game doesn't really cast anything within those address ranges, I might as well just restrict it to ensure you can't cast any functions or mess with variables. I can't think of any better ways, maybe my brain just isn't functioning
     
    #6 daniel-w, Jun 10, 2024
    • Like Like x 3
(You must log in or sign up to post here.)
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice