Ubisoft has patched a security vulnerability that was found in its UPlay software.
Last night, Google security engineer Tavis Ormandy noticed that a backdoor was opened by the UPlay service that websites could use to access the machines of anyone who had installed specific Ubisoft games.
The games that triggered the exploit included all four Assassin's Creed titles, as well as the latest Ghost Recon.
UPlay’s patch 2.0.4 – available now simply by running the UPlay client – fixes the problem.
The changelog for the patch says: "Fix addressing browser plug-in. Plug-in now only able to open UPlay application".