BetaChangelog.gg
VoidExpanse
Steam News 14 October 20214y ago

VoidExpanse signed binaries / Fix for antivirus false-positive detection

Greetings! Lately, there was a common issue when the game server binaries (which is used to run the local server for singleplayer) were detected as malware by Kaspersky Antivirus and similar software. It has made the ga…

Update log

Full VoidExpanse update

The complete published notes, normalized for clean reading and source attribution.

Repeated intro

Greetings!

Extracted changes

0 fixes1 addition2 changes1 removal
  • Server
  • Gameplay
changedLately, there was a common issue when the game server binaries (which is used to run the local server for singleplayer) were detected as malware by Kaspersky Antivirus and similar software. It has made the game unplayable for players that have such antivirus software installed.
addedOf course, there is no malware . Besides, we've not produced new VoidExpanse builds for over 3 years by now. What happened is a typical false positive detection which is expected by antivirus software that is using heuristical analysis. It has likely detected a signature produced by the binary packing software which was likely used to also pack some actual malware at some time. Unfortunately, over the past few years the tolerance level of antiviruses seems to have reduced.
changedTo avoid the issue we've digitally signed the current binary files for the local server with our codesign certificate acquired this year from Sectigo that we've used to sign CryoFall binaries. It has vastly reduced any false-positive detection issues, so we expect the same for VoidExpanse.
removedAccording to VirusTotal, the signed binaries are no longer detected by Kaspersky or any other antivirus software (compared to the unsigned version that resulted in detection by 3 antiviruses including Kaspersky ).

Lately, there was a common issue when the game server binaries (which is used to run the local server for singleplayer) were detected as malware by Kaspersky Antivirus and similar software. It has made the game unplayable for players that have such antivirus software installed.

Of course, there is no malware. Besides, we've not produced new VoidExpanse builds for over 3 years by now. What happened is a typical false positive detection which is expected by antivirus software that is using heuristical analysis. It has likely detected a signature produced by the binary packing software which was likely used to also pack some actual malware at some time. Unfortunately, over the past few years the tolerance level of antiviruses seems to have reduced.

To avoid the issue we've digitally signed the current binary files for the local server with our codesign certificate acquired this year from Sectigo that we've used to sign CryoFall binaries. It has vastly reduced any false-positive detection issues, so we expect the same for VoidExpanse.

According to VirusTotal, the signed binaries are no longer detected by Kaspersky or any other antivirus software (compared to the unsigned version that resulted in detection by 3 antiviruses including Kaspersky).

Enjoy the game! AtomicTorch Studio

Source

Steam News / 14 October 2021

Open original