By FileTrekker 2 months ago, last updated 2 months ago
There's a major security issue in Counter-Strike 2 right now, according to a number of posts on Reddit, as data miners and hackers discover a security flaw in the code of the game, causing players to avoid jumping online until the issue is fixed by Valve.
The alleged exploit allows players to obtain the IP addresses of all the players in their current lobby, with the fear being that this could open the door to a remote code execution exploit or other issues. While a number of the sources claim that the flaw allows them to execute code on the other player's machine, there's no evidence this is the case, as of writing.
However, according to one Redditor, TryingToBeReallyCool, "there is a back door that allows other players in your lobby to execute code on your machine." He added, “I managed to find instructions after not too hard of a search, and it’s super easy to pull off. I wouldn’t play the game for the next day or two until this gets patched, it looks both legit and very serious. Your machine could genuinely be at risk if attacked by this.”
What does seem to be happening, however, is that players' IP addresses are being exposed in CS2. While not ideal, this isn't as serious as remote code execution, as IP addresses are publicly exposed to any service you use anyway (such as visiting a web page).
The news follows a particularly tough time for the game right now, with players being randomly VAC banned in recent times, and the overall player count dropping dramatically in recent times, with many players lamenting the passing of CS:GO.