Techly NewsGet the app

Get the latest tech news

Game launcher installs Root CA certificate on your machine (2024)


Launcher Version: N/A Operating system: Windows Antivirus/Firewall (if any): N/A Wine/Mono Version (if any): N/A Hello, I've noticed that the launcher installs a custom Root CA certificate onto my ...

However, even if this is in fact a well-intentioned bad execution of the code signature verification idea and not malicious in any way, it is still a pretty egregious security issue for the users of SBRW. I understand this may seem somewhat unintuitive at first glance, but the current code already downloads the certificate from a hardcoded URL every time it finds that it is missing from the OS trust store. Even if that is true, the practice of adding a trusted Root CA in such an untransparent manner, without consulting the user, or really just in general, is a real breach of security principles and needs to be effectively communicated at the very least, with all its implications, if not immediately remedied.

Get the Android app

Or read this on Hacker News

Read more on:

Photo of machine

machine

Photo of game launcher

game launcher

Photo of Root CA certificate

Root CA certificate

Related news:

News photo

SpaceX has built the machine to build the machine. But what about the machine?

News photo

'Building cities on the Moon': Chinese scientists develop machine to turn lunar dust into bricks

News photo

Google is experimenting with machine learning-powered age-estimation tech in the US

« Being good isn't enough
Blogs used to be different »