UPlay Security Flaw Identified

A Google security engineer has identified a significant security flaw in Ubisoft’s UPlay DRM system. Luckily, Ubisoft are on the case.

A rootkit has been discovered which could potentially leave your PC vulnerable to infiltration. This means that once a plug-in is downloaded for UPlay, your files could be accessible and your PC hijacked. This was identified by Tavis Ormandy with Assassin’s Creed: Revelations on PC.

It is thought the following titles could be problematic:

• Assassin’s Creed II
• Assassin’s Creed: Brotherhood
• Assassin’s Creed: Project Legacy
• Assassin’s Creed Revelations
• Assassin’s Creed III
• Beowulf: The Game
• Brothers in Arms: Furious 4
• Call of Juarez: The Cartel
• Driver: San Francisco
• Heroes of Might and Magic VI
• Just Dance 3
• Prince of Persia: The Forgotten Sands
• Pure Football
• R.U.S.E.
• Shaun White Skateboarding
• Silent Hunter 5: Battle of the Atlantic
• The Settlers 7: Paths to a Kingdom
• Tom Clancy’s H.A.W.X. 2
• Tom Clancy’s Ghost Recon: Future Soldier
• Tom Clancy’s Splinter Cell: Conviction
• Your Shape: Fitness Evolved

Ubisoft are said to be updating UPlay with fixes for the problem. Here is a guide to fixing the problem on Rock, Paper, Shotgun. There is also chatter over at Ubi forums.