General Community > Chit Chat

Valve is under hit of hackers...

(1/5) > >>

sensovision:
have you hear the news about stealed sources from developers of Half Life series...? from what I know it seems that from devlopers was stealed and later published source codes of HL2; CS; TF; HL; DoD; TF2 and the most important sources for Steam... which would allow hackers to exploit network which was originally created for distributing pathces and bug fixes, secure shopping and such... so you probably can imagine how serious could be results of exploiting secruity of such netowrk? :(
see these posts for more info:

--- Quote --- For those with copies of HL Source

My one and only post on this whole matter. I'm not going to sit here and try to come down on those with copies of the source code because I'm not really prepared to handle the onslaught of bashing that will entail. However, I am willing to let all of you know that the VALVe has involved the FBI, who is now running an investigation on the whole matter. I read a post earlier that said "are they going to come after 10,000 ppl?", they probably will.

I'm not trying to scare anyone. I'm actually trying to warn all of you. It would be STUPID to go to jail for stealing something that involves more than one huge company and thousands and thousands of dollars. Is it really worth going to jail just so you can have a 1 cubed level with no light and the HL2's source code which can never be used publically because most of that information, if ever used, is very recognizeable? It's stealing.

The worse thing I see coming out of this is the creation of cheats and how hard is it to throw in some code to prevent people with access to their source from using their own code against them? Not very. It's been said that VALVe is in the process of hiring professional cheat coders (anyone would turn their backs on cheaters for money) to throw in some code which would disable even the oldest cheats that still work. Sounds good to me, I'd also suggest drastic measures such an agreement in the EULA which allows VALVe to do such and such if you are caught cheating. Fines, investigations, whatever. Cheating is stupid.

So is stealing. All in all, I'm just saying that 90% of the people (50% of those are probably younger than 18) with the source right now can't do anything with it and it'd be sad to see someone punished for having something they can't use. More than anything, I would agree with measures which scanned computers before installing HL2 because insanely illegal obtained source code sits on computers of people within the HL community. It's bad for VALVe, and kinda sad that the community would actually involve themselves in using the code.

That's all I'm saying. //Tennovan
--- End quote ---
http://steampowered.com/forums/showthread.php?threadid=23238

and here is petition for help in identifing who steal codes:

--- Quote ---Ever have one of those weeks? This has just not been the best couple of days for me or for Valve.

Yes, the source code that has been posted is the HL-2 source code.

Here is what we know:

1) Starting around 9/11 of this year, someone other than me was accessing my email account. This has been determined by looking at traffic on our email server versus my travel schedule.

2) Shortly afterwards my machine started acting weird (right-clicking on executables would crash explorer). I was unable to find a virus or trojan on my machine, I reformatted my hard drive, and reinstalled.

3) For the next week, there appears to have been suspicious activity on my webmail account.

4) Around 9/19 someone made a copy of the HL-2 source tree.

5) At some point, keystroke recorders got installed on several machines at Valve. Our speculation is that these were done via a buffer overflow in Outlook's preview pane. This recorder is apparently a customized version of RemoteAnywhere created to infect Valve (at least it hasn't been seen anywhere else, and isn't detected by normal virus scanning tools).

6) Periodically for the last year we've been the subject of a variety of denial of service attacks targetted at our webservers and at Steam. We don't know if these are related or independent.

Well, this sucks.

What I'd appreciate is the assistance of the community in tracking this down. I have a special email address for people to send information to, helpvalve@valvesoftware.com. If you have information about the denial of service attacks or the infiltration of our network, please send the details. There are some pretty obvious places to start with the posts and records in IRC, so if you can point us in the right direction, that would be great.

We at Valve have always thought of ourselves as being part of a community, and I can't imagine a better group of people to help us take care of these problems than this community.

Gabe
--- End quote ---
http://www.halflife2.net/forums/showthread.php?perpage=15&pagenumber=1

what do you think about this all? do you think it's end of Valve and probably HL2? or they deal with it somehow?

Shoeb Omar:
they'll deal with it.


i'm an avid valve fan, and think it's pitiful that some people with the intelligence of hacking into systems has to put it to such useless use.  They'd probably make a ton of money getting a job to use their skill sin anyway.

Spaceman-Spiff:
its kinda their own fault too for using unpatched outlook

sensovision:

--- Quote from: Spaceman-Spiff on October 05, 2003, 06:27:49 PM ---its kinda their own fault too for using unpatched outlook

--- End quote ---
I would say fault in using outlook at all... why not use other mail clients which just not so easy to spread viruses like Outlook...
anyway I hope they deal with this problem somehow...

mattsiegman:
If only they were using Linux :) or even just Mozilla ;)

anyhow, that realy blows blah blah blah, there isn't much that can be done anymore, once its posted on the 'net, its gone...

Navigation

[0] Message Index

[#] Next page