In an amusing turn of events, a developer managed to get their fake game "Watch Paint Dry" onto Steam without Valve ever seeing it.
It seems Valve had some vulnerabilities in their system that allowed this cunning developer to scan the web page, use a few tricks and actually get their fake game released onto Steam.
The Steamworks website uses AJAX, so anyone can read the code behind it. This allowed the developer to look at the calls the website was doing, and do their own calls as if they were someone else.
See the full article here.
Their plan was to get caught, and they did. Valve of course fixed the issue, but the fact that something like this isn't properly checked is crazy.
It's a good job they weren't out to do anything really naughty. Article taken from GamingOnLinux.com.
It seems Valve had some vulnerabilities in their system that allowed this cunning developer to scan the web page, use a few tricks and actually get their fake game released onto Steam.
The Steamworks website uses AJAX, so anyone can read the code behind it. This allowed the developer to look at the calls the website was doing, and do their own calls as if they were someone else.
See the full article here.
Their plan was to get caught, and they did. Valve of course fixed the issue, but the fact that something like this isn't properly checked is crazy.
It's a good job they weren't out to do anything really naughty. Article taken from GamingOnLinux.com.
0 Likes
Some you may have missed, popular articles from the last month:
The comments on this article are closed.
Patreon
PayPal
See more from me