Secret Club (hacker group)
Script error: No such module "Draft topics".
Script error: No such module "AfC topic".
Secret Club is an international reverse engineering and hacking group.[1] known for releasing open-source projects and finding vulnerabilities in modern software applications[2]. Members of this organization publicize research on their website and Twitter profile to increase the availability of free, educational resources and strengthen global information security[1]. The group practices responsible disclosure, as showcased by their handling of various vulnerabilities[3][4][5], but has no formal public codex, other than disavowing malicious usage of their work[1]
Disclosures[edit]
Corrupting Microsoft Windows hard disks[edit]
On January 18 2021, Secret Club member Jonas Lykkegaard publicly disclosed a critical vulnerability in the latest version of Microsoft Windows.[6]. The exploit could allow a malicious attacker to distribute a file, which could corrupt the victim's hard disk upon downloading[7]. Microsoft classified this as a Windows NTFS Denial of Service Vulnerability and assigned it CVE-2021-28312[8]. The exploit was patched on April 13 2021[9].
Hacking Counter-Strike players[edit]
On April 10 2021, a Secret Club member under the alias floesen released a video[10] showcasing their critical vulnerability in the popular video game platform Steam and engine Source (game engine). The vulnerability allowed a malicious attacker to craft a game invite, which would grant hackers total control of the victim's computer if accepted[11]. The exploit was disclosed to Valve's bug bounty program on Hacker1 two years prior to its public disclosure, but was not patched despite being classified by Valve as critical[12]. After publicly disclosing its existence on Twitter, independent journalists confirmed its existence[13], and it was patched a few weeks after[14] .
Breaking iOS WiFi[edit]
On June 18 2021, Secret Club member Carl Schou released a format string vulnerability in the latest version of the mobile phone operating system iOS, used by Apple[15]. This vulnerability was confirmed by independent researchers[16] to cause a complete denial of service of the WiFi network stack[17]. The damage done could be reverted if the user reset their phone's network settings[18]. Security research company ZecOps released an in-depth technical analysis of this vulnerability, dubbing it "WiFiDemon"[19]. The vulnerability was officially acknowledged, and patched, by Apple on July 21 2021 where it was assigned CVE-2021-30800[20].
Controversies[edit]
Anti-cheat emulation[edit]
On July 6 2021, Secret Club member Carl Schou released a software suite that emulated the communications of the industry standard Anti-Cheat BattlEye, dubbed BottlEye[21]. This allowed hackers to play any BattlEye protected game without any integrity checks or protections against cheating. A week later, the repository was taken down by a DMCA takedown notice [22]. This takedown was allegedly sent by the company behind BattlEye, but they quickly issued a public statement on Twitter insisting that they were not behind the takedown notice[23]
References[edit]
- ↑ 1.0 1.1 1.2 "Secret club".
- ↑ Bolding, Jonathan (2021-04-18). "Widely-publicized Steam Invite hack has been fixed". PC Gamer. Retrieved 2021-07-05.
- ↑ Naceri, Abdelhamid (2021-01-29). "BitLocker touch-device lockscreen bypass". secret club. Retrieved 2021-07-05.
- ↑ L, Jonas (2021-01-15). "BitLocker Lockscreen bypass". secret club. Retrieved 2021-07-05.
- ↑ impost0r (2020-08-14). "Abusing MacOS Entitlements for code execution". secret club. Retrieved 2021-07-05.
- ↑ "Windows 10 bug corrupts your hard drive on seeing this file's icon". BleepingComputer. Retrieved 2021-07-05.
- ↑ January 2021, Barclay Ballard 15 (15 January 2021). "This tiny shortcut can completely crash your Windows 10 device". TechRadar. Retrieved 2021-07-05.
- ↑ "Security Update Guide - Microsoft Security Response Center".
- ↑ "Microsoft fixes Windows 10 bug that can corrupt NTFS drives". BleepingComputer. Retrieved 2021-07-05.
- ↑ "Source Engine remote code execution exploit triggered by accepting a steam invite". YouTube.
- ↑ "Source Engine bug could allow hacker to take over a PC with CS:GO Steam invite". TechSpot. Retrieved 2021-07-05.
- ↑ https://twitter.com/floesen_/status/1337107178096881666
- ↑ "'Counter Strike' Bug Allows Hackers to Take Over a PC With a Steam Invite". www.vice.com. Retrieved 2021-07-05.
- ↑ Carr, James (2021-04-20). "Valve's Really Terrible Security Hole Is No More". SVG.com. Retrieved 2021-07-05.
- ↑ Mayo, Benjamin (2021-06-19). "A specific network name can completely disable Wi-Fi on your iPhone". 9to5Mac. Retrieved 2021-07-05.
- ↑ "Quick Analysis for the SSID Format String Bug". 20 June 2021.
- ↑ O'Flaherty, Kate. "New iPhone Bug Breaks Your WiFi: Here's The Fix". Forbes. Retrieved 2021-07-05.
- ↑ "iPhone bug breaks WiFi when you join hotspot with unusual name". BleepingComputer. Retrieved 2021-07-05.
- ↑ Research team, Zecops (17 July 2021). "Meet WiFiDemon – iOS WiFi RCE 0-Day Vulnerability, and a Zero-Click Vulnerability That Was Silently Patched". Retrieved 2021-09-26.
- ↑ "About the security content of iOS 14.7 and iPadOS 14.7". Apple Support. Retrieved 2021-09-26.
- ↑ Schou, Carl (6 July 2020). "BattlEye client emulation". Retrieved 2021-09-26.
- ↑ "Copyright takedown notice of BottlEye repository on GitHub". GitHub. Retrieved 2021-09-26.
- ↑ "BattlEye statement on secret.club". Retrieved 2021-09-26.
This article "Secret Club (hacker group)" is from Wikipedia. The list of its authors can be seen in its historical and/or the page Edithistory:Secret Club (hacker group). Articles copied from Draft Namespace on Wikipedia could be seen on the Draft Namespace of Wikipedia and not main one.
