Malicious Bukkit Plugin

Discussion in 'Community News and Announcements' started by timtower, Nov 14, 2024.

  1. Offline

    timtower Administrator Administrator Moderator

    Malicious Bukkit Plugin
    Server owners please note: We have found a fake Bukkit plugin project named Grim Anticheat 3.3.64 containing malicious files. The malicious files target servers and seem to create a backdoor to allow gameplay hacks. The project has 421 individual downloads (unique). Our automatic security measures have successfully flagged this file as suspicious, though the project was still approved due to a human error. We are investigating this internally and are working to improve our processes to prevent this from happening again. Actions we have taken:
    • Removed the affected files
    • Banned the offender's account
    • Initiated an additional scan to all Bukkit plugins and files
    If you are one of 421 users who have downloaded the Grim Anticheat 3.3.64 plugin:
    • Stop the server and delete the plugin
    • Run an antivirus scan (while this may not detect the malware, this is always a good practice)
    • To be 100% safe - wipe your server
    We will keep you updated as our investigation of this concludes. We apologize to the affected users and thank the community members who have helped us with the research efforts
     
    Last edited: Nov 14, 2024
    KarimAKL likes this.

Share This Page