Gaming Companies Remove Analytics App After Massive User Outcry

An anonymous reader writes: "Several gaming companies have announced plans to remove support for an analytics app they have bundled with their games," reports Bleeping Computer. "The decision to remove the app came after several Reddit and Steam users noticed that many game publishers have recently embedded a controversial analytics SDK (software development kit) part of recent updates to their games. The program bundled with all these games, and at the heart of all the recent controversy, is RedShell, an analytics package provided by Innervate, Inc., to game publishers."

The app is intended to collect information about the source of new game installs, and details about the gamer. Following a massive user outcry in the past two weeks, several game makers have given in to pressure and are removing this SDK. Game makers and games who announced they were removing RedShell include Bethesda (Elder Scrolls), All Total War games, Warhammer games, Magic the Gathering Arena, and more. [This Google Docs spreadsheet and Reddit thread have a list of games containing RedShell.]

This has been done before

I remember back in the day DOOM from ID software (the one with the flashlight problem), came with starforce (the usual DRM back in the day) along with checking to see if cloneCD or other cd cloning software was installed. Long story short, damn game had lighting problems, DRM backdoors, and was harassing me about legitimate software on MY OWN MACHINE. The gall, the absolute gall for some goddamn game to tell ME what I can install or not install on my own machine....That did not go over well, that put me on the path of becoming a nemesis fighting them for the wrong they had visited upon me and my precious machine.

20 years later and I am only now just starting to purchase games again. For those 20 years though, I was only using the piratebay to get my games as copies, ironically because a legitimately purchased game had put odious restrictions on (like needing the physical cd, cd key, drm installed, etc etc) whereas the pirates had produced a superior version that loaded faster, had the lighting problem fixed, did not require a cd or cd key and did not install DRM modules or check what software I had installed.

If these companies really want to create a legion of people like me who righteously tell game companies to go fuck themselves, then they are on the correct path to a gamer revolution where the outcry and loss of sales will hurt them pretty badly.

I see cable companies as doing relatively the same thing, they had a monopoly more or less for so long and it was so profitable that they became total assholes, putting in advertisements after we already paid for the cable, bundling shit, etc etc etc. The end result? We now have a 27% decline in tv viewership and the term 'cord cutter' has entered the popular vernacular. Game companies seem dead set on copying those results.

Re:Mobile

[Dutch+Gun]

Analytics might be valuable to YOU. A developer. But that doesn't make it okay. If you are are gathering data server-side for a multiplayer game that's one thing. But if you are gathering ANY data AT ALL from user's PCs, that represents an unacceptable risk to end users for no benefit to them. It's customer-hostile. You've only been getting away with it because people don't know you are doing it. Don't do it.

I haven't done anything yet, because my game isn't in beta yet. Beta testers will be informed that I'm collecting information about their gameplay sessions, because this is more reliable than having them try to remember and describe their experiences. Of course, that feedback will be welcome too.

Just to be 100% clear, I'm talking about in-game metrics. That is "how often does the player die". "Which weapons do they prefer to use?" "Are they getting stuck anywhere?" And so on. Not personal information about anything on their computer system. This is 100% for gameplay tuning, and is ONLY for beta copies of the game, which are released in order to help polish the game before release.

See, this is why I'm pissed at game companies that are poisoning the well for developers like me. I can't even discuss the matter without getting modded as a troll.

Re: Mobile

There's no good enough reason to let automated collection of exploitable information continue outside the explicit control of a development environment.

Sure there is. e.g.: Heat maps of player deaths. Heat maps don't need to know who died, there's no need to collect personally identifiable information that could be exploited.

As a developer you'd want to know if a particular part of your game is too hard and kills the majority of players trying to get past it. It allows you to retune that part of the game to make it fun instead of gruelling, improving the likelihood that players will have positive comments about your game to help garner new sales.

Re:Mobile

[Xest]

I think you're perhaps missing the crux of why this sort of thing annoys people. The issue is not that what you say is wrong, I absolutely agree that such analytics are useful regardless of whether it's a game or any other piece of software, and you're right they can be anonymised (though this is all too often reversible, but that's a different subject for a different day) .

The problem is that each and every time an application sends data from your system it's punching a hole out of your firewall to the wider net, and with so many applications doing this now it makes it hard for people to assure security - so whilst you say it's just anonymised data being sent out, anyone observing network traffic from their systems will see your application leaking data out to the internet even if it may only be a single player game for which there should be no reason to do this.

My personal preference therefore is if you are going to do things like this, is that you make it optional and turn it off by default. Too much software nowadays connects to the net for the benefit of the company and without the consumer's consent, and it makes it all too easy for Malware authors to mask data extraction from systems. There was a time where you would know exactly what was coming and going from your PC, and I get that that time is gone, but that doesn't mean that it's okay to keep making the problem worse.

So whilst you perceive it to be useful analytics (because it really is), the user perceives it to see you using their resources that they've paid for to to help your business at their expense by siphoning off data without them knowing.

My view: good software is clean software, it does nothing without your knowledge, installs no 3rd party components that do anything other than the bare minimum to let your piece of software run, and does not try to meddle with your system at an OS level. That means no DRM, no analytics, no forced registering an online account (unless it's part of online play in a game for example), no installing anything other than in it's own installation directory. If your software does anything more than that then it's right that users are going to be suspicious.

This is a classic case of "The road to hell is paved with good intentions". I get from your point of view that what you're doing you perceive to be harmless, but that's because you're writing it, you get to see the source code, and know what's collected. All the user sees is encrypted data being siphoned off their hard drive and being sent to an unknown server on the internet from a compiled, potentially obfuscated binary whose operations are protected by DRM that blocks any attempts to evaluate the applications operation at runtime.

You see how that might piss a user off even if it's harmless?

Re:Unity Analytics

[lordlod]

The Unity analytics track your progress through the game. How long you play for, where you get stuck, and for relevant games, when you decide to pay to progress.

Redshell spies on your web browser. That's a different game.

it would only be used in pre-release version

[thomn8r]

Another classic, right up there with

* The check is in the mail
* I'll respect you in the morning
* It's just a cold sore