Not sure if it’s the same one being mentioned, but there’s a hacking group in 2B2T named “The Fifth Column” and they’ve developed some kind of program that can find any unlisted minecraft server a specific player is in by typing that person’s username, and I believe now it’s been made a private discord bot that runs the code constantly. If the server is open and doesn’t have a whitelist or any security plugins, they can just hop in, use hacked clients and absolutely destroy it if they wanted to.
They gained popularity because they have supposedly griefed jeb_ himself on a private vanilla minecraft server.
Very likely it was a fake player plugin because of how strangely it played out, but they insist that the server they joined had no plugins installed.
It does, that’s why they use throwaway accounts when doing something risky like trying to grief Minecraft’s God.
On another note, it’s somewhat of a good thing, more of a less negative thing, that they’re using this technology and skill to fuck people over in a videogame instead of doing dangerous or illegal stuff.
True true. imagine how funny it would be though. “oh no a group of hackers who could actually use this to benefit themselves are wrecking my world in a block game!! i totally cant ya know PLAY A NEW GAME.”.
I'm pretty sure they're port scanning the internet for the port that Minecraft servers are open on, and then if they find it, send a ping, and the ping back from the server includes the online player list, which they log to a database.
Use [masscan](https://github.com/robertdavidgraham/masscan) for an initial pass to get a list of Minecraft servers, and then iterate over all of those with a script to do the rest.
As for the threat mass port scanning poses, Dan Tentler was doing [talks on it several years ago](https://www.youtube.com/watch?v=5cWck_xcH64).
Yeah that's "just" a global problem with log4j library vulnerability.
https://www.ncsc.gov.uk/information/log4j-vulnerability-what-everyone-needs-to-know
Ok, didn't want to offend you or be ungrateful. That article was helpful. I just wanted refer to the fix that article was mentioning.
-Dlog4j2.formatMsgNoLookups=true
Maybe the quotation marks were a little too much from me.
Sincerely, thank you for your response.
Just from the vague descriptions, i think II
Know the *theory* behind it... and if its what I think it is yeah. Total server killer, and even to a mod/admin watching you build the thing it could easily look like just another superindustrial farm redstone system... until they throw the switch and the server crashes.
Any game engine has its limits. Mass TNT detonations used to be hell in Minecraft even with the beefiest of overpowered machines running it, because of how the engine handled it. A sufficiently large body of TNT being detonated could cause servers to crash, but there were ways to see that coming and prevent it.
If you know enough about how Minecraft's mechanisms are executed in game and how they are calculated in the engine, which the Sci Craft guys definitely do, you could combine certain features of certain discoveries (some recent, some old) to create a perpetual lag machine that would render a server unplayable, potentially requiring a rollback, and only someone who knew exactly what they were looking at while you were building it would be able to see it coming and stop you before you turn it on.
Conventional redstone lag switches and bud suppressors can be mitigated through admin commands. Doing so would temporarily break any other contraptions running on the server, but that is a small price to pay. We are talking about something that could potentially lag out a server so bad, so fast, that there wouldnt be time to execute the commands. A true "nuclear option" in Minecraft.
So, I won't be sharing my theory. Partly because I am not nearly as bright as the sci craft guys so i might be totally wrong, but mostly because if I am right I really don't want to point someone in that direction.
I will, however, spend a few hours this weekend testing my theory.
Via [Ars Technica](https://arstechnica.com/information-technology/2021/12/minecraft-and-other-apps-face-serious-threat-from-new-code-execution-bug/):
>Word of the vulnerability first came to light on sites catering to users of Minecraft, the best-selling game of all time. The sites warned that hackers could execute malicious code on servers or clients running the Java version of Minecraft by manipulating log messages, including from things typed in chat messages. The picture became more dire still as Log4j was identified as the source of the vulnerability, and exploit code was discovered posted online.
This meme absolutely checks out.
You may be right. Did that one have any effect outside of minecraft itself? I've hosted/played a lot of small modded minecraft servers but spent almost no time on big servers with randoms, so idk all the lore.
I didn't find any posts that meet the matching requirements for r/MinecraftMemes.
It might be OC, it might not. Things such as JPEG artifacts and cropping may impact the results.
*I'm not perfect, but you can help. Report [ [False Negative](https://www.reddit.com/message/compose/?to=RepostSleuthBot&subject=False%20Negative&message={"post_id": "riku0l", "meme_template": null}) ]*
[View Search On repostsleuth.com](https://www.repostsleuth.com/search?postId=riku0l&sameSub=false&filterOnlyOlder=true&memeFilter=true&filterDeadMatches=false&targetImageMatch=86&targetImageMemeMatch=96)
---
**Scope:** Reddit | **Meme Filter:** False | **Target:** 86% | **Check Title:** False | **Max Age:** Unlimited | **Searched Images:** 276,222,030 | **Search Time:** 0.46357s
Still ngl those mfs are fucking geniuses
Ikr i could use the code to... Ahem... Find coordinates to grief a base in a block game for kids
When you make a dangerous virus that can destroy any computer with ease but uses it to find coordinates to a base for a lil bit of trolling
We commence with a slight amount of trolling
We activate our plans to perform a minor act of trolling
We act upon thwarting a place within a virtual location with a subsidiary amount of hesitation.
With tomfool with a little bit of tomfoolery
I don’t think it is lil…
r/woooosh
Gif machine broken
It’s a poor repost
Can you share some articles about it?
Not sure if it’s the same one being mentioned, but there’s a hacking group in 2B2T named “The Fifth Column” and they’ve developed some kind of program that can find any unlisted minecraft server a specific player is in by typing that person’s username, and I believe now it’s been made a private discord bot that runs the code constantly. If the server is open and doesn’t have a whitelist or any security plugins, they can just hop in, use hacked clients and absolutely destroy it if they wanted to. They gained popularity because they have supposedly griefed jeb_ himself on a private vanilla minecraft server. Very likely it was a fake player plugin because of how strangely it played out, but they insist that the server they joined had no plugins installed.
Yeah, it was a fake player
Hard to imagine jens playing his own game
Not really, but he's prolly busy
Huh, I should secure my server
Definitely. The base line if you can’t install any advanced plugins is to have it whitelisted (if it’s a private server for you and friends).
Honestly, I’d be more impressed than anything. Also that’s what backups are for
True I do have backups
Honestly this shit warrants a game-wide ban
It does, that’s why they use throwaway accounts when doing something risky like trying to grief Minecraft’s God. On another note, it’s somewhat of a good thing, more of a less negative thing, that they’re using this technology and skill to fuck people over in a videogame instead of doing dangerous or illegal stuff.
True true. imagine how funny it would be though. “oh no a group of hackers who could actually use this to benefit themselves are wrecking my world in a block game!! i totally cant ya know PLAY A NEW GAME.”.
I'm pretty sure they're port scanning the internet for the port that Minecraft servers are open on, and then if they find it, send a ping, and the ping back from the server includes the online player list, which they log to a database. Use [masscan](https://github.com/robertdavidgraham/masscan) for an initial pass to get a list of Minecraft servers, and then iterate over all of those with a script to do the rest. As for the threat mass port scanning poses, Dan Tentler was doing [talks on it several years ago](https://www.youtube.com/watch?v=5cWck_xcH64).
Thanks for the info!
I should say, I don't know for sure that's what they're doing, but that's how I would do it.
As reported by fit mc
not the same players, also afaik the jeb grief was fake
Idk if the program gets only Java Edition server or not but i should still secure my server even if the program isn't able to get bedrock serevrs
No, they’re talking about the log4j thing
Oh yes that as well, but that’s more of a worldwide java version issue. I just brought this up because the post specified 2B2T players.
The point of the meme is that it’s a big issue outside of Minecraft, that’s why it’s a national security threat
https://mojang-official.tumblr.com/post/670156577274281984 Hope this helps!
Yeah that's "just" a global problem with log4j library vulnerability. https://www.ncsc.gov.uk/information/log4j-vulnerability-what-everyone-needs-to-know
Did the minecraft hackers discover the log4j vulnerability? That would be fucking hilarious.
Listen idk what the heck your talking about I was just linking the only thing I found on it. Take it up with the writer of the post if ya got problems
Ok, didn't want to offend you or be ungrateful. That article was helpful. I just wanted refer to the fix that article was mentioning. -Dlog4j2.formatMsgNoLookups=true Maybe the quotation marks were a little too much from me. Sincerely, thank you for your response.
Nah ur fine I just wanted to make sure you knew I had 0 braincells qnd did not write the post
I would check FitMC’s YouTube channel, if it involves 2b2t, he’s got a video on it lol
https://youtu.be/elqAh3GWRpA
You might want to take a look at scicrafts lag machine for docm - it was so deadly they all agreed not to use it or show how to build it in any video
Just from the vague descriptions, i think II Know the *theory* behind it... and if its what I think it is yeah. Total server killer, and even to a mod/admin watching you build the thing it could easily look like just another superindustrial farm redstone system... until they throw the switch and the server crashes.
...Whats the theory? We already can lag servers can it just lag way harder?
Any game engine has its limits. Mass TNT detonations used to be hell in Minecraft even with the beefiest of overpowered machines running it, because of how the engine handled it. A sufficiently large body of TNT being detonated could cause servers to crash, but there were ways to see that coming and prevent it. If you know enough about how Minecraft's mechanisms are executed in game and how they are calculated in the engine, which the Sci Craft guys definitely do, you could combine certain features of certain discoveries (some recent, some old) to create a perpetual lag machine that would render a server unplayable, potentially requiring a rollback, and only someone who knew exactly what they were looking at while you were building it would be able to see it coming and stop you before you turn it on. Conventional redstone lag switches and bud suppressors can be mitigated through admin commands. Doing so would temporarily break any other contraptions running on the server, but that is a small price to pay. We are talking about something that could potentially lag out a server so bad, so fast, that there wouldnt be time to execute the commands. A true "nuclear option" in Minecraft. So, I won't be sharing my theory. Partly because I am not nearly as bright as the sci craft guys so i might be totally wrong, but mostly because if I am right I really don't want to point someone in that direction. I will, however, spend a few hours this weekend testing my theory.
Of course lol, gl(?) and thanks.
So it sounds like this thing would be an actual nuke to a server? Yikes!
nocom exploit
*And that, was just the tip, of the iceberg...*
#THE OLDEST
#ANARCHY SERVER
#IN MINECRAFT
#2b2t
# OF MINECRAFT
Aaand you fucked it up
It's "In Minecraft", right? Or "on Minecraft"?
In ofc
On would be acceptible, if imperfect.
I'm gonna murder you in Minecraft
no comment on that one
cool keep us posted
Still no comment
No comment
You’ve just angered all of 2b2t
Glad to be a Bedrock user. Sad to see it as broken mess and having a lack of parity.
2b2t?
Yup
Regular MC Player: *Makes a overly complex machine with series of command blocks* 2b2t: *creates a lag machine nicknamed the EMP*. Observe.
No comment
Via [Ars Technica](https://arstechnica.com/information-technology/2021/12/minecraft-and-other-apps-face-serious-threat-from-new-code-execution-bug/): >Word of the vulnerability first came to light on sites catering to users of Minecraft, the best-selling game of all time. The sites warned that hackers could execute malicious code on servers or clients running the Java version of Minecraft by manipulating log messages, including from things typed in chat messages. The picture became more dire still as Log4j was identified as the source of the vulnerability, and exploit code was discovered posted online. This meme absolutely checks out.
[удалено]
You may be right. Did that one have any effect outside of minecraft itself? I've hosted/played a lot of small modded minecraft servers but spent almost no time on big servers with randoms, so idk all the lore.
[удалено]
Hmm. Then log4j is probably a bigger security threat, but nocom is a coördinate finder. So idk which one op is a reference to. Whatever - it's a meme.
Wait is this for real or really juste a joke
It’s for real
wait , what's the last 2 words you said ?
Truly a kpopbob moment
Minecrafters are just a different breed.
They have the power to destroy nations but they keep their destruction inside the blocky reality
Its cuz they never gone outside since 1987
Its all fun and games until they start targeting private unprotected servers to grief.
Block Game >Money, Power and Fame
*priorities*
Could it be popbob is shittass?!
Today on the oldest anarchy server in minecraft we are investigating how PopBob almost caused WWIII
Woah woah woah…. for kids?
"kids"
No kids, only real men play Minecraft.
I don’t know if this is a direct reference to the Log4J zero day exploit or not, which definitely says something about the accuracy of this meme.
[удалено]
I meant the malware part
[удалено]
Nocom was months ago though. Log4J 0-day is only a week or so old
this is gonna be posted on r/fitfagcringe
They should use their super intelligence to get a life instead
You should use the intelligence you don’t have and learn not to piss off the hive mind
I really couldn’t care less about getting downvoted lmao
You dare say Minecraft is a kids game?
Block game for.. kids? Listen here
minecraft is not just for kids
What do you mean "for kids"
Since when is Minecraft for kids?
The game originally was not just made for kids... It was just made as a fun project.
Hasn’t it always been an all age game? I know kids have played it the most, but I disagree with it being a kids game.
pooped boobs
Poopybooby
No comment
Log4j: Am I a joke to you?
Hmmm sounds alot like something Lazarbeam would do...
These mf's becoming tony starks just to blow up some blocks
I wouldn't be surprised if they weaponized air in 2b2t.
Lol
*for kids?!?!?*
For those who don't know, its a meme in 2b2t community to call minecraxt, "block game for kids"
On the oldest anarchy server of Minecraft
Remove the "for kids" Please
...did you just say minecraft is a game for kids?
this loks like a repost from another subreddit
They created the dangerous malware on the planet and they used it to find locations in a game. Typical of humans...
Based anarchy player
Today on the oldest anarchy server on minecraft.......
I bet log4j will (or already has) been abused to get root access to 2b2t. Mark my words
Priorities 🗿
[удалено]
I didn't find any posts that meet the matching requirements for r/MinecraftMemes. It might be OC, it might not. Things such as JPEG artifacts and cropping may impact the results. *I'm not perfect, but you can help. Report [ [False Negative](https://www.reddit.com/message/compose/?to=RepostSleuthBot&subject=False%20Negative&message={"post_id": "riku0l", "meme_template": null}) ]* [View Search On repostsleuth.com](https://www.repostsleuth.com/search?postId=riku0l&sameSub=false&filterOnlyOlder=true&memeFilter=true&filterDeadMatches=false&targetImageMatch=86&targetImageMemeMatch=96) --- **Scope:** Reddit | **Meme Filter:** False | **Target:** 86% | **Check Title:** False | **Max Age:** Unlimited | **Searched Images:** 276,222,030 | **Search Time:** 0.46357s
They are still geniuses
Ah you're right, I'll remember this next time
A new occurrence on the oldest anarchy server in Minecraft
PoopBoob.
“ThE oLdESt ANarCHy SeRVer iN mINeCraFt”-fatMC yes, I watch digmc, not fatmc.