Skirting Overwolf

Yes Clark, windows defender has a 95% effective detection rate, which is right up there with the best leaders in the market, although it does have a slightly higher than desired false-positive. In either case, because the malicious behavior of Overwolf is “intended”, it shouldn’t be flagged as malware.

As far as the crypto mining, you can read about Overwolf’s Buff partnership here (minus spaces): www. newsbtc. com/all/startup-that-allow-you-earn-crypto-while-you-game/

And while you’re defending this company, keep in mind that the WoWUP competition:

  • Pays addon devs the same share as overwolf via wago
  • Is open source, so you can see exactly what it does
  • Doesn’t establish persistence
  • Doesn’t use a virtual overlay to display adds
  • Doesn’t scan your computer for personal info, machine info, or other installed apps as part of a data collection scheme

The only good thing Overwolf has going for it is overall addon selection and that’s because they bought a near monopoly. Hopefully as wago matures we will see more addons posted on a platform that doesn’t rely on a user exploitive management client.

1 Like

And your point is? Just because they partnered with them is not the same as them secretly using your computer to “mine” without your permission.

God I hope so, then people can move on to their next witch hunt :slight_smile:

1 Like

What is meant by “partnering” is that Buff is an Overwolf overlay you can use to mine cryptocurrency.

That’s it. A single overlay that you have to opt in to use as well as opt in to installing. Overwold doesn’t come with any overlays preinstalled other then it’s dock.

I mean I just use WoWup to download and update my addons now.

“Haha, see guys I didn’t get anything from downloading this that means no one did!” Get tired of Overwolf shills pulling that.

https://www.reddit.com/r/wow/comments/j1gpay/heads_up_in_regards_to_overwolfcurseforge_app_in/

https://swordbytes.com/blog/security-advisory-overwolf-1-click-remote-code-execution-cve-2021-33501/ Just last May. Critical security breach, “This vulnerability allows remote unauthenticated attackers to execute arbitrary commands on the underlying operating system that hosts Overwolf’s Client Application. By combining the XSS issue with a Chromium Embedded Framework (CEF) sandbox escape, it is possible for attackers to achieve Remote Code Execution on the victim’s computer.”

Every ad they run is a risk for malware, as well.

This actually just popped up on MMO-Champ today:
https://www.mmo-champion.com/content/10341-Wago-io-Partners-up-with-WowUp-CurseForge-Denies-WowUp-s-Application-for-API-Access
Apparently WowUp tried to work with Overwolf playing by Overwolf’s rules, got ignored for months and ultimately rejected for subsequently reaching out to Wago.io since Overwolf was ignoring them.

1 Like