World of Warcraft‘s addon functionality is quite powerful and there’s been some fantastic LUA addons for the game but a disturbing hack has been discovered.
Reported by the G Data security Blog, the simple hack involves a player typing on specific command into the chat interface. Once activated, the player will open a backdoor to be potentialy robbed by another player.
The code in question is as follows:
- /run RemoveExtraSpaces=RunScript
This will open up the full interface to the attacker who asked you to type it in and they can also track a character’s location in the world. A player who executed this would effectively be opening up their inventory the attacker and be robbed blind.
Players need to be aware of this problem and never type in the above command in the chat window, even if asked to by someone you think you know. Also be extremely careful when downloading addons and make sure they come from a reliable source.
There are dodgy characters in the game trying to trick players with this method so be careful and don’t type it no matter what. The problem has been around for a couple of weeks but has gone unnoticed by some players.