Subj : One of the largest Minecraft server hosting providers has a serio To : All From : TechnologyDaily Date : Sun Jun 25 2023 11:45:03 One of the largest Minecraft server hosting providers has a serious security issue Date: Sun, 25 Jun 2023 10:34:09 +0000 Description: Server company behind popular games like Minecraft risked leaking its source code, potentially putting customers at risk. FULL STORY ====================================================================== One of the biggest Minecraft server hosting providers has reportedly leaked access to its website source code, potentially putting gamers at risk. Australian company Shockbyte, which amasses annual revenues of as much as $10 million, provides hosting for a range of popular games, including Minecraft, Counter-Strike, and Assetto Corsa. But according to the Cybernews research team, the websites source code private repository location, its credentials, and Shockbytes Git index file, were all leaked. Minecraft server provider leaked source code Cybernews says that attackers exploiting the vulnerability could not only have manipulated the companys website, but also moved laterally to the game servers hosted by Shockbyte, thus manipulating code running on the Minecraft servers and affecting gamers directly. Read more > These are the best web hosting services around > Free VPN user data leaked in Telegram group > The BlackCat ransomware gang is now threatening to leak stolen Reddit data Other concerns are that attackers could modify the code to skim payment information or to install malware . The leaked token was already expired, but attackers can use this and the other leaked information to ascertain how the website operates, potentially getting access when the website undergoes an update. Shockbyte told Cybernews that measures had been taken to address what it admits to as having mistakenly deployed .git directories. The company did not immediately respond to TechRadar Pro s request for comment on how this happened, and the steps its taking to protect customers and prevent future attacks. Cybernews said: Considering the rapid growth of the gaming industry and the increasing reliance on server hosting providers, the security and privacy of users should be a top priority for companies operating in this space. Those likely to have been affected are being urged to access their accounts exclusively in secure environments, where cookie attacks are unlikely to happen. More generally, the advice to use strong passwords and two-factor authentication (2FA) still stands. Worried about your exposure? Consider the best endpoint protection software ====================================================================== Link to news story: https://www.techradar.com/pro/one-of-the-largest-minecraft-server-hosting-prov iders-has-a-serious-security-issue --- Mystic BBS v1.12 A47 (Linux/64) * Origin: tqwNet Technology News (1337:1/100) .