Quote Originally Posted by Daralii View Post
Anticheat usually runs on either ring 3, where applications run, or ring 0, which is the most tightly controlled part of the entire system and the core of the OS. I will also mention that ring 0 anticheat has still been hijacked and used for ransomware before, because all software can have exploitable flaws, and you aren't fixing that without it being a huge pain in the ass.
It doesn't matter what access the anticheat has. It matters what the anticheat is doing. I feel like the obsession with anticheat running at kernal level is a bit of a "can't see the forest for the trees" moment.

Genshin is the only notable case that I can think of in which anticheat has been used to create a security exploit. Pointing at this as if it's a common occurance despite most games having secure kernal level anticheat with zero issues is a bit of a red herring.

Quote Originally Posted by Ilisidi View Post
And anti cheat is useless in this case anyway, since it's possible to listen to the network stream from a completely different device without doing anything to the device that's running the game.
This is true. In this case it's simply the client being sent data that they shouldn't be sent.

I think anticheat is a worthwhile separate discussion though.