NMM bug fix release and download hacking problems fixed

[Dark0ne]

We’ve released a bug fix edition of NMM, taking us to version 0.44.4. Here’s the change log:

 

1. New Feature: The ReadMeManager now supports PDF files.

2. Bugfix: ReadMe Manager preventing .txt files from being installed in mod folders. (This fixes the installation of mods like Fores New Idles)

3. Bugfix: Rare crash while deleting a mod in CategoryView.

4. Bugfix: Omod script interpreter.

5. Bugfix: Users were able to set Mods and Install Info as the same folder.

6. Bugfix: NMM crashing with a corrupt ReadMeManager.xml file.

7. Bugfix: NMM using the wrong game path after a game rescan.

8. Bugfix: LoadOrder export using the wrong plugin list.

 

You can download the update through NMM or by downloading and installing manually through the NMM download page.

 

Unfortunately earlier today we found out that some of our file servers had been hacked, replacing manual (not NMM) downloads with a malicious installer that contained malware. This hack was targeted as the hacker deliberately named the file “Nexus_Downloader.exe” to try and snag as many people as possible. While I haven’t tried to run it myself it seems to be a scam malware that sends the user to a fake FBI page informing the user they must pay must in order to unlock their system. To make it worse only 4 of the 20 main anti-virus programs people use flagged this as a virus. It’s obviously a relatively new one that most haven’t caught up with, and this might have caught a few of you off guard.

 

As soon as we found out about the breach we had the servers down and patched up within minutes and we’ve been working today further hardening our servers and shutting down the method used by the hacker to gain access. All told, malicious downloads were only being served for an hour early this morning. If you don't know what I'm talking about then you missed it all.

 

There’s a few things to take away from this. First of all I’m sorry that this has happened to some of you. You clearly trust us to provide you with a safe and secure modding experience and we got caught with our pants on our heads. While this won’t help you now, can I give you some advice? Don’t trust anything, any site, or any person fully on the internet. Be suspicious of everything. If you’ve tried to download a fluffy sheep mod that says it’s 50mb in size for Skyrim and instead been given a file called “Nexus_Downloader.exe” that’s 100kb in size...be suspicious. We’d never do something like that, especially without letting you know first. These sorts of things can happen to any site out there (just look at the past hacking’s of Sony, Valve/Steam...even Bethesda got hacked) and having an anti-virus, firewall and malware protection won’t keep you 100% safe. Nothing will. But try and be perceptive and don’t let your guard down.

 

We can’t guarantee your safety 100% when browsing and downloading from the Nexus. No other site can offer you that guarantee either. What I can guarantee you is that we work hard to try and make the experience as safe and secure as possible, and we work even harder when we know we’ve been breached, often without sleep.

 

Never be afraid to report suspicious activity either by others or by the sites themselves on the forums or to the staff.

[MotoSxorpio]

Sound advice for everyone. Good to see you are on top of the problem. Thanks for your efforts to keep it safe and fun.

[Kryptonater]

In response to post #7634110.

Hooray for my PC, I got that twice for txt file instruction downloads, and my PC couldn't open them :D

[HacKR]

Whew. Glad i didn't download manually today. Keep up the good work guys. I'll always be supporting you

[Xezcente]

Yeah, I almost downloaded the Nexus Downloader thingy, luckily my connection that time was crappy and it gave me a network error even before the download finishes. Thanks, admins for keeping the site secure!

[Brett41]

All of which is WHY I keep coming back to the NEXI sites for gaming.

 

Fortunately I haven't been caught out - Been at Work or asleep for past 60 hours - No time to game.

 

Other sites would have waited until the complaints reached Rock Concert Decibels (looking at Steam/EA here!) )before acting, BUT the Nexus checks it out as soon as they hear a whisper...

 

 

Well done, and I hope not too many were snagged by these B'Stards!

 

B

Edited March 21, 2013 by Brett41

[spintochick]

Thanks for the attention to this issue. :) I did a stupid thing, but even still I knew you all would take it seriously and do what you could to nip this issue in the bud. Y'all are great!

[Heresthewolfman]

CRAP! I tried to download something this morning and got this installed! I was half asleep at the time. My scanner said that it stopped something called "Suspicious.Cloud.7.F", but I'm unfortunately using Norton on this computer, so I'm unsure how effective this is.

 

Edited March 21, 2013 by GrendelofSiealvgrund

[xybolt]

In response to post #7634227.

if you have windows on your machine, then you can remove Norton and go for MSE (Microsoft Security Essentials). It's a nice and free AV. More better is that it relies on additional security updates for MS products/OS which you are already gaining on the top of Norton's updates. i have also gotten Norton in the past, but i would define these as crap if you know how to care your PC against malwares/viruses.

You can reply with the fact that Symantec (company whose publish norton AV's ) is the market leader concerning AV, but they have achieved it through a nice worked out marketing strategy. Look to the OEM system where Norton is being pre-installed at most windows OS. Recently, McAfee is using the same strategy ...

[Soutear]

I think servers got hacked again. This time, thingy called 'Nexus Loader.exe', after 'Downloader' version earlier today. Be warned folks! I tried to downaload the same unlucky mod, and got this both times instead... Do not open it!