Minecraft Log4j exploit: Everything known so far

Last week, Minecraft was hit by perhaps the worst exploit ever seen, which is saying something for a game that's over a decade old.

[{"selector":"#anim-3b498889-7f59-40e3-ba68-32d500548bb4","keyframes":{"transform":["translate3d(-115.92356%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-58033ec2-013a-4b52-84c7-2125f9085ffb","keyframes":{"opacity":[0,1]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-956fc6ac-871c-4dc5-9fb8-d549212da9be","keyframes":{"transform":["scale(0.15)","scale(1)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"forwards"}] Image Credit - Google

This exploit, if performed correctly, allowed malicious players to take control of another player's PC while playing on a Minecraft server.

[{"selector":"#anim-13f856c9-d100-4117-b7ea-0fed6259b7e9","keyframes":{"transform":["translate3d(-115.00001%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-feca4819-8f39-45c9-98e1-255d0a21e8ab","keyframes":{"opacity":[0,1]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-cd86dd1e-5eef-42cd-a4fe-86e4347b6983","keyframes":{"transform":["scale(0.15)","scale(1)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"forwards"}] Image Credit - Google

Although now patched by Mojang, it's interesting to look at exactly just how this situation unfolded

[{"selector":"#anim-d18d26f0-8b66-41bc-a1ed-61ecf0f1447d","keyframes":{"transform":["translate3d(-115.78948%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-2f9ea0dc-c0e0-42aa-a1aa-ed416508db07","keyframes":{"opacity":[0,1]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-1c23985b-b380-40f7-aa46-e2d1d70ef0df","keyframes":{"transform":["scale(0.15)","scale(1)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"forwards"}] Image Credit - Google

This exploit was known as a "zero-day" exploit, meaning that its existence was completely unknown to the developers

[{"selector":"#anim-48f70ff5-15ed-4c8b-920d-4bb57c7bb9f9","keyframes":{"transform":["translate3d(-115.94685%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-57652554-9382-4293-b281-ddbfb99a4820","keyframes":{"opacity":[0,1]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-cb237b96-3225-48b0-a047-9611f2843bdc","keyframes":{"transform":["scale(0.15)","scale(1)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"forwards"}] Image Credit - Google

It allowed bad actors to take control of other players' computers and even hold Minecraft servers hostage.

[{"selector":"#anim-9d1a2a10-bca6-4918-bca7-57bfd50a8825","keyframes":{"transform":["translate3d(-115.92356%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-acbe96e9-edd1-4e4e-9c7c-1e98f2b63beb","keyframes":{"opacity":[0,1]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-0ad10465-8763-4894-9304-b33428bd6ead","keyframes":{"transform":["scale(0.15)","scale(1)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"forwards"}] Image Credit - Google

Once executed, the exploit allows hackers to execute remote code on a Minecraft system due to the specific logging library Minecraft uses, called Log4j.

[{"selector":"#anim-abb9f665-ea10-4dff-ab25-34624390f1c7","keyframes":{"transform":["translate3d(-115.92356%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-76c243d8-bd8b-49c1-89e5-1559a54863fc","keyframes":{"opacity":[0,1]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-339518c0-b2f6-4a6f-9b2a-fa680e1fd3b3","keyframes":{"transform":["scale(0.15)","scale(1)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"forwards"}] Image Credit - Google

It's not just Minecraft that was affected by this exploit. So far, it's been confirmed that other services such as Steam, iCloud, Amazon, and Twitter were also among those affected

[{"selector":"#anim-55bd94d7-393c-4c46-b82f-a28d8beac5c9","keyframes":{"transform":["translate3d(-114.8265%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-b8ba7e11-005d-4bd8-be16-c58718d4e464","keyframes":{"opacity":[0,1]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-0a8c27c8-1b6b-4868-a3d3-05f639971e71","keyframes":{"transform":["scale(0.15)","scale(1)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"forwards"}] Image Credit - Google

Minecraft players should always ensure that they are using the official version of the game, not those published by third-party sources

[{"selector":"#anim-88ce0d3e-b90e-4f93-bb51-8b3a61082c93","keyframes":{"transform":["translate3d(-115.45741%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-ada56ae0-342a-4c5c-88dc-39cfdcf6ad98","keyframes":{"opacity":[0,1]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-8c0de4e0-acba-41ef-b23e-911bb7af0cdc","keyframes":{"transform":["scale(0.15)","scale(1)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"forwards"}] Image Credit - Google

FOR MORE SUCH STORIES VISIT BREEZYSCROLL