Give Feedback
NMM bug fix release and download hacking problems fixed
1. New Feature: The ReadMeManager now supports PDF files.
2. Bugfix: ReadMe Manager preventing .txt files from being installed in mod folders. (This fixes the installation of mods like Fores New Idles)
3. Bugfix: Rare crash while deleting a mod in CategoryView.
4. Bugfix: Omod script interpreter.
5. Bugfix: Users were able to set Mods and Install Info as the same folder.
6. Bugfix: NMM crashing with a corrupt ReadMeManager.xml file.
7. Bugfix: NMM using the wrong game path after a game rescan.
8. Bugfix: LoadOrder export using the wrong plugin list.
You can download the update through NMM or by downloading and installing manually through the NMM download page.
Unfortunately earlier today we found out that some of our file servers had been hacked, replacing manual (not NMM) downloads with a malicious installer that contained malware. This hack was targeted as the hacker deliberately named the file “Nexus_Downloader.exe” to try and snag as many people as possible. While I haven’t tried to run it myself it seems to be a scam malware that sends the user to a fake FBI page informing the user they must pay must in order to unlock their system. To make it worse only 4 of the 20 main anti-virus programs people use flagged this as a virus. It’s obviously a relatively new one that most haven’t caught up with, and this might have caught a few of you off guard.
As soon as we found out about the breach we had the servers down and patched up within minutes and we’ve been working today further hardening our servers and shutting down the method used by the hacker to gain access.
There’s a few things to take away from this. First of all I’m sorry that this has happened to some of you. You clearly trust us to provide you with a safe and secure modding experience and we got caught with our pants on our heads. While this won’t help you now, can I give you some advice? Don’t trust anything, any site, or any person fully on the internet. Be suspicious of everything. If you’ve tried to download a fluffy sheep mod that says it’s 50mb in size for Skyrim and instead been given a file called “Nexus_Downloader.exe” that’s 100kb in size...be suspicious. We’d never do something like that, especially without letting you know first. These sorts of things can happen to any site out there (just look at the past hacking’s of Sony, Valve/Steam...even Bethesda got hacked) and having an anti-virus, firewall and malware protection won’t keep you 100% safe. Nothing will. But try and be perceptive and don’t let your guard down.
We can’t guarantee your safety 100% when browsing and downloading from the Nexus. No other site can offer you that guarantee either. What I can guarantee you is that we work hard to try and make the experience as safe and secure as possible, and we work even harder when we know we’ve been breached, often without sleep.
Never be afraid to report suspicious activity either by others or by the sites themselves on the forums or to the staff.
336 comments
Comments locked
A moderator has closed this comment topic for the time beingedit: Oops almost forgot when the "wall" hiding your desktop is gone get some kind of anti-virus and run "full" scans, I got 4 of them and its gone now. I used Hijack-This, Malwarebytes, Spyhunter, and HitmanPro. So you can try any/all of them if you want too......i mean i can't stop you......can i?......no i cant....
no wonder the last few weeks the connection went full retard lol
any ho, manage to update it to latest version, so far so good. The only thing is i lost all the previous mod i've download before i apply the update *GASP*
but luckily oblivion ran as usual, with all the previous mod still intact, not sure why but i checked back OBMM and looks like all the Mod before update still there, just not showing up in Nexus Mod Manager in Mod's tab.
lastly, thanks to the update, now no more readme screw up!!!
I'm actually surprised he learned how to upload files here. He hasn't done that since Morrowind.
Jr.
http://forums.nexusmods.com/index.php?/topic/947923-somehow-got-the-fbi-moneypak-virus-after-downloading-a-mod/
Have a nice day
Blessings and many thanks to the nexus team for all the hard work in fighting the hack.
44.3 if I remember correctly was the really BAD bug version that stripped the readme files from the mods and then installed them rather than leaving them intact.
I am using version 44.5 of NMM and saw NMM jump from 44.6 to 7 in like LESS than a 72 hour period so I personally do NOT know what changes have been made as of 44.7
Many people have complained about slow response times from the Skyrim server itself. My grandkids and great ones play dragonage, oblivion and a few of the other nexus supported games and report very quick responses from those servers so my opinion is that as skyrim is so HEAVILY modded at current time that there is always going to be network congestions. Oblivion and the rest ARE pretty much retired with skyrim after all
Just be patient with your downloads. Don't click from one server to another. Just use ONE server and reclick until it responds. Very rarely have I encountered any ACTUAL slow or sluggish DL speeds. Just in queing it up. Then again I AM on 56k so I can't test that theory past v96 speeds.
Glad you were able to DL a bunch without bugs... progress appears to have been made or you ducked the bullet. Am hoping for a status from Nexus if they have that period behind them. Haven't detected a virus since 4-2 so am hoping its behind them now. Also expunging a software gremlin (source unverified) so plan to reinstall Skyrim from the ground up including Nexus and am hoping the cleansing is now completed (such as that can be done)
I'm using 44.1 now and spent a lot of time getting back to zero. Took Dark0ne's advice and decided to hold on upgrades until there is a good reason so hope we can get a list of the changes similar to that which was given on the open of this article.
Generally when i restart NMM and the "offensive" download shows up, I just redownload the same file and NMM doesn't crash. Dunno if the 44.7 update fixed that issue.
Personally I think the NMM program itself should have its own download page with a BUG forum and a SUGGESTIONS forum attached. As we've gotten accustomed to THIS forum here I'd leave this one running as a general discussions/biaatching page.
I'm sure it exists SOMEWHERE on Nexus here but...I can't find it so..on my earlier comment on NMM having it's own DL page like all the other mods I'd suggest the "main" info page contain all the info pertaining to the release (44.0, 44.3, 44.7...yadda yadda...) and on down the line and the download page contain JUST a few previous STABLE beta downloads.
So.. how's THAT for some ideas?
Gramps.
Servers aren't actually "busy" I think links just aren't responding quick enough on the pages.
Without IDM I just kept clicking on the SAME server link till it caught up and allowed the DL to start. On 56k it took about 5 tries each time. Still no biggie.
Haven't had the virus flag here for about a week now and I've been download small texture packages all day.
Hope this helps everyone.
Gramps
i suppose a hacker could change the md5 on the website,so maybe put the md5s on all your servers and have the mod manager check all the servers (downloaded file matches server A,B and C so it must be legit).with the idea being 1 server might get hacked but it's unlikely ALL servers will get hacked.if the mod manager doesn't get 3 matches it sends a message back to you guys saying file abc.zip downloaded from server B is not validating then all you guys have to do is check the logs for these field reports to know what's affected