Analysis of Security Risks Associated with Riot Vanguard Compromise

The post raises concerns about the risks in the event of a compromise of Riot Vanguard, specifying that the latter does not establish network connections until Riot applications (such as League of Legends) are launched. The author asks whether a user would be protected if the client or game is not opened, comparing two scenarios: a Remote Code Execution (RCE) vulnerability (like those in Dark Souls or Apex Legends) or an attack requiring manual malware download (such as the incident involving the Genshin Impact driver). The responses received vary between a total risk to the PC and relative security in the absence of interaction with Riot software.