Bleeding Pipe and Fracturizer, two different ways that Minecraft Mods can compromise your computer and steal your Minecraft account and other usernames and passwords.
Fracturizer works pretty simply, you have a malicious mod developer who creates a virus that replicates and copies itself to other mods. This eventually lead to a big Minecraft mod being infected and infecting others. When a computer is infected, the hacker can take your usernames, passwords, crypto wallet.
Bleeding Pipe on the other hand, is vastly different. A development shortcoming that is common on a ton of Minecraft mods lead to a bunch of modded Minecraft having the possibility of being compromised. A malicious attacker could tell a Minecraft server to tell your computer to send your usernames and passwords to the hacker’s website.
Also for the fun of it I threw in a Minecraft anticheat system that definitely makes me paranoid.
LINKS
—————————————————————————–
Fracturizer Writeup
https://github.com/fractureiser-investigation/fractureiser/blob/main/docs/users.md#what-actually-happened
Bleeding Pipe Github Writeup
https://github.com/dogboy21/serializationisbad/blob/master/README.md
MMPA Bleeding Pipe article
https://blog.mmpa.info/posts/bleeding-pipe/
Bitwarden
https://bitwarden.com/
EchOh-No! (Echo vulnerability article)
https://ioctl.fail/echo-ac-writeup/
SOCIALS
—————————————————————————–
Discord Server
https://discord.gg/B46HXK5fZm
Twitter
Tweets by notexttospeech
TIMESTAMPS
—————————————————————————–
00:00 – Previously: Fracturizer
02:42 – Today: Bleeding Pipe
07:11 – Normal Mods
08:23 – Minecraft Anti-cheat