The backdoor someone put in my game basically gave them serverside access, which meant they could use their own admin in my game.
I have since deleted the require(modelID) function, but I looked using DataStore Editor plugin and saw some datastores I did not add. Am I safe? Can these datastores do anything to my game still?
that looks like an Server Exploit. which means people who payed for it have access and it uses some sort of data store to keep their saved scripts, probably their admin and their custom Admin
If they are not accessed, then they will not do anything as they are just stored data. However, I would recommend deleting them anyway just in case an exploiter finds a way to access them through an unsecured remote or suchlike.
How do I go about deleting it?
You can use :RemoveAsync to delete a value, they persist for 30 days but that (I believe, I’ve never done it) can be deleted with :RemoveVersionAsync.
1 Like
What about deleting the whole datastore, like “AdminLibertyA”
You can check out this post:
2 Likes