Flight Sim Labs Adds DRM aka Malware to its Airbus

Discussion in 'HardForum Tech News' started by FrgMstr, Feb 20, 2018.

  1. FrgMstr

    FrgMstr Just Plain Mean Staff Member

    Messages:
    48,858
    Joined:
    May 18, 1997
    The company, Flight Sim Labs, that apparently makes and sells add-on planes for the game Flight Sim X, decided it would spike its Airbus A320-X with malware. If you downloaded its plane without paying for it, you were the target. The file would scan for a legit serial number, and if it did not find one, it would then send all your passwords stored in the Chrome browser back to the company. Not sure what was intended to be done with the information. The virtual A320-X costs $100. Funny that the company tried to pass it off as a DRM measure.

    Check out the video.

    “‘Test.exe’ is part of the DRM,” he said, “and is only targeted against specific pirate copies of copyrighted software obtained illegally.“… we realize that a few of you were uncomfortable with this particular method which might be considered to be a bit heavy handed on our part,” he said.
     
    qb4ever, captaindiptoad and Armenius like this.
  2. capt_cope

    capt_cope Gawd

    Messages:
    936
    Joined:
    Apr 12, 2009
    Remind me how that's legal again?
     
    dr_drift, Chupachup, d8lock and 23 others like this.
  3. THRESHIN

    THRESHIN 2[H]4U

    Messages:
    3,006
    Joined:
    Sep 29, 2002
    This is just retaliation escalated to stupidity, not DRM. It's like if someone punches you in the arm you break theirs in response and then try to argue that it was justified.
     
  4. Armenius

    Armenius I Drive Myself to the [H]ospital

    Messages:
    20,210
    Joined:
    Jan 28, 2014
    With the amount of money people spend on these virtual planes I'm sure they lost a lot of customers over this. But if you go to their forums there are still people white knighting FSL like they can do no wrong.
     
  5. collegeboy69us

    collegeboy69us [H]ardness Supreme

    Messages:
    5,257
    Joined:
    Jul 27, 2003
    I'd love to see this company get butt raped in court for this... they are pushing code to customers (paying or not) that's designed to steal sensitive information.... bank logons being the main one. I'd love to hear them answer the question why they think it would be okay to steal users private financial data because they "detected" someone didn't pay for a plane.

    That's like saying: "you didn't yield to me in traffic and caused an accident, I now get to go through your house and take every bit of private bank logins you have"
     
  6. kju1

    kju1 2[H]4U

    Messages:
    3,036
    Joined:
    Mar 27, 2002
    The universe will always build a better idiot?
     
  7. Uvaman2

    Uvaman2 2[H]4U

    Messages:
    3,143
    Joined:
    Jan 4, 2016
    Soooo, they have the means to check and block pirate SN#/copies... but instead chose to have the software trigger the execution of the malware... how is this a good idea?
    So, how many years of jail is this going to be?
     
  8. ccmfreak2

    ccmfreak2 Limp Gawd

    Messages:
    318
    Joined:
    Jul 27, 2009
    "You steal from us? Fine! We'll steal from you!"

    Yeah, that's a lawsuit waiting to happen, and certainly won't hold up in US courts. Two wrongs don't make a right.
     
    Chupachup likes this.
  9. ManofGod

    ManofGod [H]ardForum Junkie

    Messages:
    11,413
    Joined:
    Oct 4, 2007
    I am sure they did not lose a lot of customers over this. This is not some top gun shot up em vid game, these are highly sophisticated simulations of the real thing. Now, clearly, if the information is correct, that was the wrong this to do but, you are not going to find a more realistic PC flight simulator, anywhere or, even at all.
     
  10. kju1

    kju1 2[H]4U

    Messages:
    3,036
    Joined:
    Mar 27, 2002
    No they probably only further encouraged the pirates to steal more ;)
     
    Armenius likes this.
  11. ManofGod

    ManofGod [H]ardForum Junkie

    Messages:
    11,413
    Joined:
    Oct 4, 2007
    Yes, I would, if I did a ton of flight simming. However, I do not and therefore, the last version I bought was version 9.
     
  12. Armenius

    Armenius I Drive Myself to the [H]ospital

    Messages:
    20,210
    Joined:
    Jan 28, 2014
    No shit. I don't see how that makes things different. What made you have the assumption that I didn't know what kind of product was being sold here? This practice was a violation of trust and it will be almost impossible to get it back from some people.
     
  13. ManofGod

    ManofGod [H]ardForum Junkie

    Messages:
    11,413
    Joined:
    Oct 4, 2007
    So, theft now has an excuse? LOL ;) Oh well, would not surprise me if this is not something that actually happened but, we will see. (Proof, after all, is key.)
     
  14. ManofGod

    ManofGod [H]ardForum Junkie

    Messages:
    11,413
    Joined:
    Oct 4, 2007
    With the assumption that you thought they will or have lost a lot of customers over this? Good luck finding anything else that does what this software does because, you know, you can't. (Mostly, anyways.) Internet keyboard warriors unite! :D ;) Is there proof that this is an actual thing? I do not assume anything anymore, if I can help it.
     
  15. thenapalm

    thenapalm Limp Gawd

    Messages:
    413
    Joined:
    Dec 6, 2001
    Ha, the joke's on them. I don't store any passwords electronically so come at me, bro.

    (I don't use their software in any capacity)
     
  16. kju1

    kju1 2[H]4U

    Messages:
    3,036
    Joined:
    Mar 27, 2002
    What in my sentence implied I was excusing their actions? I made no excuse for piracy.

    Was anything besides that first sentance supposed to be coherent? Don't get me started on aviation simulators - you will lose. This product is utter shit compared to some of the sims I have used. Granted they arent home use ones but you did say "anything else that does what this software does"...

    Also it stands to reason: deploy dangerous code that STEALS from people and then they find out about it you can expect to lose customers. I mean come on even if the company promises to never use it on legit people they still have the ability to do so and have opened up the ability for a bad actor to use that code for malicious reasons. Its only LOGICAL that you would trust them less...
     
    d8lock and GoldenTiger like this.
  17. NeghVar

    NeghVar 2[H]4U

    Messages:
    2,452
    Joined:
    May 1, 2003
    Kinda brings back memories of the Sony root kit. That did not go well for Sony.
     
  18. alxlwson

    alxlwson You Know Where I Live

    Messages:
    6,659
    Joined:
    Aug 25, 2013
    HFS! Someone will fucking go to jail over this, and they shoukd.
     
    GoldenTiger and LightsOut41 like this.
  19. natos

    natos Limp Gawd

    Messages:
    442
    Joined:
    Oct 1, 2010
    And this is exactly why I never store passwords in my damn browser.....I know they are exploitable, and not encrypted.
     
  20. zexelon

    zexelon n00b

    Messages:
    40
    Joined:
    Jul 16, 2006
    I really dont know about jail time, but a hefty fine, or better yet a court order to provide reasonably high end version for free, would be a good way to go. What they did was stupidly wrong and a message should be sent that if you do this sort of thing you loose the right to whatever you a developing! Outside of that X-Plane is the best sim out there, just use X-Plane ;)
     
  21. kju1

    kju1 2[H]4U

    Messages:
    3,036
    Joined:
    Mar 27, 2002
    No what they shouldve done is what any other company does:

    1) Report back IPs w/out serials. Send piracy notices
    2) Disable their software

    Yes all of that can be bypassed. But I am not sure what they were thinking when they thought they could steal from people...
     
    captaindiptoad likes this.
  22. arnemetis

    arnemetis 2[H]4U

    Messages:
    2,786
    Joined:
    Aug 2, 2004
    I mean it's also possible their software screwed up and missed the valid serial number of a paying customer, and now has committed crime against their paying customers. This is an open and shut case of a company committing identify theft, and internet based crime. There should be no scenario where this company doesn't close and some higher ups are in prison. We actually have them admitting to stealing personal login information, I will be so pissed if this doesn't end with convictions.
     
    d8lock, qb4ever, GoldenTiger and 2 others like this.
  23. capt_cope

    capt_cope Gawd

    Messages:
    936
    Joined:
    Apr 12, 2009
    Well considering most other people who knowingly distribute a computer virus with the intent to cause harm spend around a year in prison (in the US at least) I'm hoping everyone involved in this decision gets at least that much. With any luck their company won't be around when they get out.
     
    d8lock, LightsOut41 and alxlwson like this.
  24. silk186

    silk186 [H]ard|Gawd

    Messages:
    1,610
    Joined:
    Feb 26, 2008
    I'm sure that some are concerned about false negatives.
     
  25. oROEchimaru

    oROEchimaru [H]ardness Supreme

    Messages:
    4,662
    Joined:
    Jun 1, 2004
    back in the day EA couldnt combat UO cheat tools because it was illegal for them to search your pc etc outside of the client. How is this legal?
     
    Chupachup likes this.
  26. One2Zero

    One2Zero n00b

    Messages:
    26
    Joined:
    Aug 3, 2017

    I wonder what their EULA says about this. My guess would be that there's some obscure paragraph that says " by using this blah blah we will scan blah blah might steal some shit blah blah"....That is, unless their counsel is just as retarded.
     
  27. B00nie

    B00nie [H]ardness Supreme

    Messages:
    8,134
    Joined:
    Nov 1, 2012
    That was probably just an excuse. How could punkbuster work if it were illegal?

    Oh wait, it doesn't work. But I digress...
     
    oROEchimaru likes this.
  28. Lakados

    Lakados [H]ard|Gawd

    Messages:
    1,844
    Joined:
    Feb 3, 2014
    I worked for a software company once and pirated versions of the software would systematically just start replacing random database entries with random values. We always got a laugh at the support calls when people would call to troubleshoot.

    We wrote warehouse and inventory management software for lumber mills and other heavy industries.
     
    GoldenTiger and kju1 like this.
  29. zalazin

    zalazin [H]ard|Gawd

    Messages:
    1,513
    Joined:
    May 12, 2000
    They need to be crucified for pushing malware I have one word for them and it starts with an "A" ......
     
  30. Gigus Fire

    Gigus Fire 2[H]4U

    Messages:
    2,275
    Joined:
    Oct 14, 2004
    One crime does not excuse another. This was just really badly thought out.

    They should have instead done something creative fully in the game, like 5 minutes after you start the plane no matter what the altimeter controls only point 90 degrees downwards. That would have been a fairly interesting way to enforce copyrights in a beneficial way.
     
    Chupachup and sirmonkey1985 like this.
  31. arnemetis

    arnemetis 2[H]4U

    Messages:
    2,786
    Joined:
    Aug 2, 2004
    let's not forget that they quite possibly now have a cache of people's passwords, and have possibly already acted upon that information. This needs to be dealt with swiftly, before anything else can be done with the compromised information. We all know you can't just flip a switch and fix someone's credit (but you sure can flip a switch to ruin it!)
     
    Chupachup, d8lock and LightsOut41 like this.
  32. sirmonkey1985

    sirmonkey1985 [H]ard|DCer of the Month - July 2010

    Messages:
    21,718
    Joined:
    Sep 13, 2008
    i like that idea... sad thing is i was actually planning on buying this mod for my dad last night since he was asking me about it a few days ago until i saw the article pop up on google but i won't be buying it now.
     
  33. J-Will

    J-Will [H]ard|Gawd

    Messages:
    1,724
    Joined:
    Jan 10, 2009
    arbitration?
     
  34. alxlwson

    alxlwson You Know Where I Live

    Messages:
    6,659
    Joined:
    Aug 25, 2013

    I think he was alluding to the fabled PIIHB
     
  35. bugleyman

    bugleyman [H]ard|Gawd

    Messages:
    1,227
    Joined:
    Oct 27, 2010
    Yeah...whomever made that decision needs to do time.
     
    LightsOut41 likes this.
  36. DukenukemX

    DukenukemX [H]ardness Supreme

    Messages:
    4,495
    Joined:
    Jan 30, 2005
    Don't know why anyone would use that Flight Sim when the TF2 version is far more realistic.

     
    Chupachup and John721 like this.
  37. TAP

    TAP Limp Gawd

    Messages:
    236
    Joined:
    Mar 29, 2016
    Uhm, how in the world are passwords stored in Chrome able to be read by a 3rd party app? Are they not encrypted?? Wtf!
     
  38. NeghVar

    NeghVar 2[H]4U

    Messages:
    2,452
    Joined:
    May 1, 2003
    Technically they are, but there are many programs which can decrypt them.
     
  39. M76

    M76 [H]ardForum Junkie

    Messages:
    10,078
    Joined:
    Jun 12, 2012
    Heavy handed? It's simply criminal. Anyone with half a brain should know that. This means all the people at this company whose desks this idea crossed are so profoundly dumb that they failed to realize the legal implications.

    What would they do with the stolen passwords anyway? Sell them on the black market? This is not even something that would teach pirates a lesson.
     
  40. MavericK

    MavericK Zero Cool

    Messages:
    29,221
    Joined:
    Sep 2, 2004
    Pirate or not...this is straight-up bullshit and most likely illegal. There is zero excuse for a software company to install a keylogger on a customer's machine.
     
    LightsOut41 likes this.