this post was submitted on 01 May 2025
118 points (99.2% liked)

Games

18995 readers
1457 users here now

Video game news oriented community. No NanoUFO is not a bot :)

Posts.

  1. News oriented content (general reviews, previews or retrospectives allowed).
  2. Broad discussion posts (preferably not only about a specific game).
  3. No humor/memes etc..
  4. No affiliate links
  5. No advertising.
  6. No clickbait, editorialized, sensational titles. State the game in question in the title. No all caps.
  7. No self promotion.
  8. No duplicate posts, newer post will be deleted unless there is more discussion in one of the posts.
  9. No politics.

Comments.

  1. No personal attacks.
  2. Obey instance rules.
  3. No low effort comments(one or two words, emoji etc..)
  4. Please use spoiler tags for spoilers.

My goal is just to have a community where people can go and see what new game news is out for the day and comment on it.

Other communities:

Beehaw.org gaming

Lemmy.ml gaming

lemmy.ca pcgaming

founded 2 years ago
MODERATORS
nanoUFO@sh.itjust.works
118
How I Found Malware in a BeamNG Mod (lemonyte.com)
submitted 1 week ago by Thomas2024@feddit.org to c/games@sh.itjust.works
22 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[–] Maestro@fedia.io 16 points 1 week ago (2 children)

Why would it be in-game or a steam announcement? The malware was in a mod, not the base game. Mod authors can't post game announcements. So, at best you get a comment of the workshop or on nexus.

[–] Brett@feddit.org 21 points 1 week ago* (last edited 1 week ago)

Because Beamng runs their own mod repository which is even accessible ingame. This isnt about some random mod hosted on a randrom 3rd party site. This mod was released and distributed over servers and a services which Beamng as a company runs themselves. So reading a whole ass month after the incident my system and my passwords were potentially compromised fucking sucks. I'm not blaming them that the mod got uploaded. I'm blaming them that they made no attempts to publicly communicate: "yo, a mod containing malware got uploaded to our service and 3000 users downloaded it before we got informed that it was infected. If you happen to have downloaded the mod in x timeframe your system was likely compromised. Sorry yadda yadda"

[–] FooBarrington@lemmy.world 18 points 1 week ago (1 children)

Because it's supposed to reach affected users as quickly as possible, and a Steam/ingame announcement is the best way to do that? Slay The Spire made such an announcement when a popular mod was infected, and even though I didn't use that mod, I still appreciated the outreach and care.

Why are you acting like it's such a crazy idea to use broad announcement channels to reach all affected users?

[–] Maestro@fedia.io 0 points 1 week ago (2 children)

It's not a crazy idea. But it's also perfectly reasonable for the game publisher to not involve themselves with mods.

[–] Brett@feddit.org 8 points 1 week ago

Well, but they involve themselves with mods quite a bit: https://www.beamng.com/resources/

[–] FooBarrington@lemmy.world 5 points 1 week ago

It's not reasonable when it means their users are possibly affected by this vulnerability without being informed. Even if it's mod stuff, they have a responsibility towards their customers - and it's not like it hurts them in any way.