On July 1, 2025, a revised edition of Call of Duty: WW2 debuted on the Microsoft Store and was added to the PC Game Pass. This release was designed to let players experience the first-person shooter, first introduced in 2017, either for the first time or once more. Nevertheless, the launch rapidly morphed into a major security concern.
A hacker took advantage of the game to infiltrate numerous PCs, instilling fear among users. Consequently, the game was promptly taken down from the store.
### A Malevolent Troll Sparks Anxiety and Panic
Within days following the Game Pass launch, reports flooded in from players who had experienced hacks. These events included pop-up notifications, unexpected PC shutdowns, and even exposure to explicit content. The most common problem was a menacing in-game message proclaiming: “Error: You are being hacked by adrian5909, your PC is now mine.”
In one particularly strange incident, a user saw a pop-up instructing them to get in touch with lawyer Mitchell Silberberg, which then morphed into a screensaver. This event was filmed and shared by user Wrioh on X.
Since July 5, 2025, CoD: WW2 has been removed from the Microsoft Store for PC. Activision is diligently addressing the matter.
### How Did This Occur?
The security flaw can be partially traced to the transition to P2P (peer-to-peer) servers, where players host the lobby and serve as the server. This configuration exposes them to RCE (Remote Code Execution) vulnerabilities.
### What Are RCE Vulnerabilities?
RCE vulnerabilities enable hackers to gain unauthorized access to the host’s PC, potentially allowing them full control to modify the system, install malware, steal information, activate the microphone or webcam, or lock the system.
### Wider Implications
The risk extends beyond WW2, as other older CoD titles reliant on P2P, such as MW2, MW3, Ghosts, Advanced Warfare, BO3, and Modern Warfare Remastered, also face exposure.
### Steam Version Security
The Steam edition of WW2 employs dedicated servers instead of P2P, thereby avoiding the heightened risk of hacks.
In this case, it seems players have only dealt with a troll without experiencing substantial harm. However, the possibility of unrecognized data theft lingers. Activision’s swift response to withdraw the game from the Microsoft Store was a wise step to safeguard users.