Some of the most popular games on different platforms seem to have fallen victim to malware that includes user data. Games such as Roblox, FIFA, PUBG and Minecraft are among the 28 games that have been exploited by malware. These attacks were carried out between July 2021 and June this year, affecting over 3.84,000 users using around 92,000 malicious files.
A Kapersky report pointed out that other major game series released over the past year, including Elden Ring, Halo, and Resident Evil, have also been actively abused by attackers who spread “RedLine” malware under their cover.
According to researchers, RedLine is password-stealing software, which extracts sensitive data from the victim’s device such as passwords, saved bank card details, cryptocurrency wallets and information. credentials for VPN services.
The thief can pinch usernames, passwords, cookies, credit card details and autofill data from Chromium and Gecko based browsers, data from cryptowallets, instant messengers and FTP clients/ SSH/VPN, as well as files with device-specific extensions. Additionally, RedLine can download and run third-party programs, run commands in cmd.exe, and open links in the default browser. The thief spreads in various ways including through malicious spam emails and third party loaders.
“Cybercriminals are increasingly creating new schemes and tools to attack gamers and steal their credit card data and even game accounts, which may contain expensive skins that can then be sold. For example, strikes on esports, which are now gaining popularity around the world,” said Anton V. Ivanov, senior security researcher at Kaspersky.
In addition to the large number of downloaders capable of installing other unwanted programs and adware, researchers have also detected Trojans, a category of spyware capable of tracking all data entered on the keyboard and taking screenshots screen.
Mimicking the entire interface of in-game stores for “CS:GO, PUBG and Warface”, scammers create scam pages, offering potential victims a decent arsenal of various weapons and artifacts for free.
To receive the gift, players must enter the login details of their social media accounts, such as Facebook or Twitter.
After taking control of accounts, attackers are likely to search personal messages for card details or demand money from various friends of the victim, abusing their trust and carelessness, researchers said. .
The number of users attacked by malware, which collects sensitive data and spreads under the guise of some of the most popular gaming titles, has increased by 13% compared to the first half of 2021.
By attempting to download new games for free from untrustworthy resources, gamers actually received malware, losing their game accounts and even money.
The self-promoted bundle with RedLine is a great example of this: cybercriminals lure victims with advertisements for cracks and cheats, as well as instructions on how to hack games. At the same time, the auto-propagation feature is implemented using relatively unsophisticated software, such as a custom open-source thief.
The post New malware in popular games like PUBG, Roblox, Minecraft leaks player financial data: the report first appeared on BGR India.