An unknown threat actor created malicious game modes for the Dota 2 multiplayer online battle arena (MOBA) video game that could have been exploited to establish backdoor access to players’ systems. The modes exploited ahigh-severity flawin the V8 JavaScript engine tracked asCVE-2021-38003(CVSS score: 8.8), which wasexploited as a zero-dayand addressed by Google in October 2021. “Since V8