Security researchers have discovered four malicious game mods for Dota 2, which were used by attackers to hack player systems.
As the researchers of Avast Threat Labs found out, an unknown user created four game mods for the popular multi-user online game Dota 2 and published them directly in the official workshop of Steam
- “Overdog No Annoying Heroes” (ID 2776998052);
- “Custom Hero Brawl” (ID 2780728794);
- “Overdrow RTZ Edition X10 XP” (ID 2780559339).
Cybercentor introduced a backdor file with the name “Evil.lua” in all three mods. He allowed the author of modifications remotely to execute commands on infected devices, which potentially made it possible to install additional malicious programs on them.
“This backdor allows the implementation of any JavaScript code obtained through
/Media reports cited above.