14th and 15th February, 2025
Kaapelitehdas, Helsinki Finland
WarGames: Security in Games
Mikael Wecksten
Svitlana Chaplinska
What sets games apart from other applications on the web?
Almost nothing and everything! While many games are just like any other modern website with an API, database, data going back and forth games introduce a interesting new vector in it all.
Not only can items in games be worth a lot of money, accounts can be grown and harvested to be sold and games themselves can become the attack vector for something else.
With internet entertainment having evolved from game trailers, to Let's plays, to streamers, to VTubers we see attacks targeting single individuals to harass or dox through the games they play.
So what attacks do we see, what design patterns do we use to minimize our attack surfaces and what can happen when we fail?
Let's take a dive beyond the normal problems with web applications into the world of games.
Almost nothing and everything! While many games are just like any other modern website with an API, database, data going back and forth games introduce a interesting new vector in it all.
Not only can items in games be worth a lot of money, accounts can be grown and harvested to be sold and games themselves can become the attack vector for something else.
With internet entertainment having evolved from game trailers, to Let's plays, to streamers, to VTubers we see attacks targeting single individuals to harass or dox through the games they play.
So what attacks do we see, what design patterns do we use to minimize our attack surfaces and what can happen when we fail?
Let's take a dive beyond the normal problems with web applications into the world of games.
Mikael Wecksten
Mikael started off as a developer in Gothenburg, Sweden, where by law you have to work for both Ericsson and Volvo IT.
Falling into security he spent his a handful of years running up and down Sweden as a consultant and even out on the continent a couple of times.
Then he saw the country on the other side of the great bathtub and swam over to do the same in Finland for a while before calming down a little bit and now working at Metacore, keeping players and games secure and safe!
Svitlana Chaplinska
I'm a security engineer working at Metacore Games. My expertise spans across technical and information security management domains. In my work I strive to bring a positive change within the industry, making security a fun challenge to work on, rather than a constrain.
Fueled by a passion for information security, I volunteer and participate in community-driven initiatives, such as HelSec, Women4Cyber Finland, Disobey. These efforts are geared towards creating an inclusive and empowering cybersecurity future.
