For us PC users this is something that you need to sort immediately
Quite a few of us will have bought Ubisoft games in the recent Steam sale, there is an exploit which Ubisoft have now patched out but as an end user you need to deal with immediately. The exploit to the Uplay system allows hackers to hijack your system via the Uplay browser plugin.
More information is available at Gamespy with instructions to resolve issue :
Article text :
"UPDATE: Ubisoft has released a patch that it says will resolve the UPlay security exploit. The studio revealed the patch in an official statement:
We have made a forced patch to correct the flaw in the browser plug-in for the Uplay PC application that was brought to our attention earlier today. We recommend that all Uplay users update their Uplay PC application without a Web browser open. This will allow the plug-in to update correctly. An updated version of the Uplay PC installer with the patch also is available from Uplay.com. Ubisoft takes security issues very seriously, and we will continue to monitor all reports of vulnerabilities within our software and take swift action to resolve such issues.
Paying customers frustrated and angry: 99%. Pirates thwarted: 0%. I'd say that about sums up Ubisoft's score when it comes to the studio's DRM tech and PC gaming, particularly with this latest bit of news: Cyber experts say Ubisoft's mandatory UPlay network features "really bad, easily exploitable" code that creates serious security risks for all who use it.
A step-by-step video now making the rounds on the internet shows how holes in UPlay can be exploited by hackers, allowing them to search your files and take control of your PC. Speaking with CVG, Trend Micro Director of Security Research Rik Ferguson said the UPlay security flaw creates a huge risk that Ubisoft must address immediately.
"Pushing out such easily exploitable code, to such an easily targeted platform as a web browser through such a huge gaming population presents a huge risk and will of course be of interest to online criminals," Ferguson told CVG. "Ubisoft should be patching this code as a matter of urgency and in the meantime, gamers should be disabling the plug-in."
The browser plug-in Ferguson describes is automatically created during the UPlay installation. Disable it immediately by following these steps:
Firefox: Tools – Add-ons – Plugins – Disable the Uplay and Uplay PC Hub plugins
Chrome: Customize and Control (the wrench in the upper right corner) - Settings - Show Advanced Settings - Privacy section, click Content Settings - Plugins section, click Disable Individual Plugins - Disable UPlay
Opera: Settings – Preferences – Advanced – Downloads – Search 'Uplay' and delete"
Bit more info at Eurogamer :