Wow it finally happened. So glad I switched to steam running on linux mint last week. I refused to install helldivers because it wanted to install some no holes barred god level permissions anti-cheat software. Windows 11 was the last straw for me. Good times…
The volunteers at the Anti-Cheat Police Department have since issued a PSA announcing, “There is currently an RCE exploit being abused in [Apex Legends]” and that it could be delivered via from the game itself, or its anti-cheat protection. “I would advise against playing any games protected by EAC or any EA titles”, they went on to say.
As for players of the tournament, they strongly recommended taking protective measures. “It is advisable that you change your Discord passwords and ensure that your emails are secure. also enable MFA for all your accounts if you have not done it yet”, they said, “perform a clean OS reinstall as soon as possible. Do not take any chances with your personal information, your PC may have been exposed to a rootkit or other malicious software that could cause further damage.”
There is an RCE exploit in EAC which has been confirmed by their twitter account; but they didn’t confirm of it being exploited anywhere.
My belief is that the people responsible into it hacked these people months ago; as a few months ago the same hacker did attack ImperialHal while on stream with botted zombie accounts that follow him to kill him. On that stream’s highlights all those bots were named (number)destroyer2009fan; which is the same as the person that spammed the chat at the time of the hack.
This is not an advertisement for cheats. Searching the hacker’s name in cheat forums doesn’t point to any specific program. I suspect that this is openly calling out Respawn to fix their anticheat, which has been a laughing stock.
really? because all I’ve seen was them saying the exact opposite: https://twitter.com/TeddyEAC/status/1769725032047972566
The tweet says they’ve seen the reports of a potential RCE, if they acknowledge this that pretty much means there is something that could achieve it. (or am i reading into it incorrectly?)
But they also state that this hasn’t been exploited.