Roblox Malware Bypasses Parental Controls

Posted on January 13, 2021

Roblox is a game platform where anyone can make a game and interact with others. Roblox simplifies this process in their game creation software called Roblox Studio. Once you load Roblox Studio you go to view and choose toolbox to get to the models. These model creations in the toolbox can be shared and re-used in as many games as possible. This makes the issue wide-spread effecting countless games.

Roblox toolbox holiday models some infected with malware
Some of these models have malware

These models can be anything from Santa’s house to a zombie running around. Unfortunately, malware thrives on the roblox platform. We were made aware of the issue by Audrey Ortiz-Parrott, a 10 year old, who was trying to make safe games. We looked into the issue, we dived into a world of beautiful, fun malware you can play with as a character in Roblox games.

Is It Roblox malware that disabled safe chat?

Most are unaware of what we call Roblox malware, but they do know some games let them do actions they aren’t supposed to do. One feature is built by Roblox for parents who have children under 13 so they don’t talk to people in chat. A semi-popular piece of Roblox malware put in models bypasses that by disabling the parental safe chat, it then puts the player into guest chat mode. This occurs without them or their parents permission. This means strangers can talk to your kids in infected games. The name of that malware is Guest free chat script, Guest Talking Script, and Guest_Talking_Script.

We try to make things as easy to understand for people who aren’t security researchers. We settled on the word malware for this issue. Is this malware? Technically this would be called a logic bug in Roblox, but the design was prime for malicious uses.

Malware turns off parental safe chat, let's minors to talk to anyone, including adults.
One of the popular variants that bypasses roblox parental controls

Roblox could easily take care of this issue by writing a few lines of code and wiping out the majority of malware on their platform. This is possible due to the majority of the malware has the same name and same exact code in every model. This occurs, because It is shared with others who rarely modify it.

Sexual messages Malware

We are concerned about malware that injects sexual messages into chat. It says a roblox user called AmazingOmegaJames is the best person to contact for a good sexual time. His username AmazingOmegaJames is also the same name you will find his malicious script under. Unfortunately, it is in so many infected roblox models games, deleting one script won’t stop it. Deleting all the malicious scripts at once is simple to do for Roblox. It’s also worth noting that there are variants of this malware as well. This is disturbing to say the least.

After a request for comment from a reporter, all the malware we originally listed was purged. Unfortunately, the sexual messages have returned under a new name. Roblox could setup a program to automatically delete this code even when the file name changes. This is not hard to do.

Sexual messages in roblox
Roblox sexual messages added into chat by the games script.

There is a lot of other malware on Roblox, which is why we contacted them. we told them we’d like a comment, which we’ve yet to receive.

If you are a parent and this makes you concerned, you have a right to be. The good news is that this malicious code only impacts the player while they are in the current game. Once they leave the infected game, the malware stops, until they go to another game with malware.

Is this actually malware? Technically it is code unknowingly and unwittingly put into games by the game creators that abuses the chat platform, again that could be used in a malicious way. We don’t like to split hairs over names, as we want people to know about the problem in an easy to digest format. We’ve been made aware that some may like to know the technical specifics.

Chat messages from non-existent Roblox Player

The H4XX :3 malware also known as I’m getting TIRR3D sends chat messages that you frequently see in many Roblox games. These messages range from mean to violating the terms of service. The reasons you see these mean comments a lot is because of the script h4xx :3.

The malware will cause chat messages to pop up saying among other things “Hiyas! I’m a proud member of an awesome game called roblox! Wanna join it? Haha.” It has a myriad of other responses, including one that bypasses the swearing filter, to others that are just annoying. The reason we consider this malware is because it antagonizes users from a non-existent user, so they can’t be banned. Technically it is just code that abuses the platform.

Roblox malware H4XX :3 also known as I'm getting TIRR3D
More Roblox chat malware

List Of Roblox Malware

Other roblox malware that while disturbing, we have yet to write up about are listed below.

ROFL, 4D Being, Anti-Lag, Infected, Snap Reducer, Spreadify, Kill tem!, join teh moovment!”, Wormed, Trashed, asdf, J0HNSCRIPT, ROLF,kill tem, Anti-Lag2, Antivirus, Lolzorz,soz i herd u lik mudkipz,Nice little scripty, flamespread, spread, spreader. and Harmless little scripty. Some have attempted anti-viruses for roblox but none work.

We hope Roblox takes notice of this issue and starts doing something about their rampant malware issue impacting the safety of children. A few days after we wrote this there was a big purge onfmalware from the roblox site. All the malware we listed has been removed from known infected models when added to a new game. This doesn’t mean everything is malware free, some scripts like vaccine a variant of spreadify still exist.