IOActive Security Consultants Michael Jackson and Hunter Lumsdon will be presenting a talk, ‘Operations Monkey Business: An Exploration of Video Game Hacking,’ at this year’s GrrCON taking place October 2 – 3 in Grand Rapids, MI. The abstract of the talk can be found below!
ABSTRACT
Video game hacking has existed for decades, evolving alongside the industry itself. What began as simple cheat codes and modifications has grown into a sophisticated practice that influences game development, security protocols, and online economies. As gaming has shifted toward digital transactions, microtransactions, and pay-to-play models, hacking has become more than just a tool for players seeking an advantage, it now poses serious financial and security risks.
With real money increasingly tied to in-game economies, the consequences of hacking extend far beyond gaming. Exploits that manipulate game logic to bypass payment systems can undermine entire business models, disrupt fair play, and expose vulnerabilities that developers struggle to anticipate. Yet, despite its risks, hacking also plays a crucial role in identifying weaknesses and driving security improvements within the industry.
This presentation aims to examine the evolution of video game hacking, its ethical and economic implications, and how it has adapted to modern monetization strategies. Highlighting how such a highly profitable sector continues to lack proper security procedures, leaving both developers and players exposed to exploitation.
To demonstrate the real-world impact of these exploits, we will conduct a live demonstration showcasing how game logic can be manipulated to circumvent payment systems. By breaking down the methods behind these hacks, we aim to provide insight into how and why these vulnerabilities persist.
SPEAKER BIOs:
Hunter Lumsdon is a Security Consultant, with an interest and history with video game hacking. He spends his days at IOActive as a Security Consultant specializing in Web, Network, and Cloud penetration testing. He spends much of his free time tinkering and breaking video games across a plethora of platforms. When he’s not on an engagement for a client or breaking the latest video game that’s brought his intrigue, he’s likely reading up on the latest changes to cybersecurity laws and policies.
Michael Jackson is a multi-faceted Security Consultant with a deep interest in all things tech. He works at IOActive delivering a broad spectrum of services such as code-review, Android/iOS application pentesting, internal security audits, and more. During his free time, he’s often playing and breaking the most unique games he can find, pushing the boundaries of the developer’s limits. He’s excited to dive further into the world of mobile hacking and embedded systems, exploring the new frontiers of the digital world.