These new threats serve as a reminder that malware authors see gamers, their accounts, and their in-game goods as lucrative targets.
The discovery of a new malware aimed at gamers, serve as reminders that targeting gamers can be lucrative for cybercriminals. They’re also a reminder that gamers should use anti-malware software and avoid downloading illegal, “cracked” versions of games.
BloodyStealer
BloodyStealer is malware that steals information, as its name implies. This malware not only steals data (cookies, usernames, passwords, and financial information), but it also steals game sessions. The attackers can connect to major online gaming services as the victim, giving them complete control of the victim’s gaming account, by stealing gaming sessions like this. Bethesda, EA Origin, Epic Games Store, and Steam are among the most popular gaming platforms targeted by BloodyStealer.
Attackers target game accounts because they can sell them on the black market, especially if the accounts are high-level and powerful in-game accounts.
Attackers can also use those platforms to sell items that players have earned or paid for. Although in-game items are virtual, they do cost real money. That cool, virtual, in-game sword you paid for could be stolen and resold for real money, leaving you with nothing.
Crackonosh
Crackonosh, a new malware discovered this summer, demonstrates yet another way cybercriminals target gamers. It was discovered that attackers were loading their malware into “cracked” versions of popular games using Crackonosh. People who download “cracked” versions rather than buying the game legally are referred to as “hackers.”
When people downloaded Crackonosh, it came with a Monero coinminer hidden inside, which used the victims’ computing power to generate cryptocurrency for the malware authors. This is very clever of the malware authors: it gives them above-average computing resources to steal. Because gamers frequently have high-performance systems, this is very smart of them. It turned off security software and updates, making the system vulnerable to other threats.
Crackonosh’s creators were found to be targeting some of the most popular games on the market, including:
- NBA 2K19
- Grand Theft Auto V
- Far Cry 5
- The Sims 4 Seasons
- Euro Truck Simulator 2
- The Sims 4
- Jurassic World Evolution
- Fallout 4 GOTY
- Call of Cthulhu
- Pro Evolution Soccer 2018
- We Happy Few
Crackonosh had the most infected users in the United States, Brazil, India, the Philippines, and Poland in June. Infections were also discovered in the United Kingdom, France, Italy, and Canada. Mexico, Argentina, Spain, and Portugal were among the other countries represented.
Since at least June 2018, the people behind Crackonosh have earned over $2,000,000 USD from over 222,000 infected systems around the world.
How to keep your game accounts and yourself safe
These latest threats serve as a reminder that malware authors target gamers, their accounts, and their in-game goods as specific and lucrative targets. For starters, keeping your gaming system secure can help you avoid malware infections.
Second, multi-factor authentication is now available on many online gaming platforms. While this may not protect you from all attempts at account hijacking, it can help to significantly raise the bar of security.
Finally, only purchase games from reputable game retailers. Purchasing games from other sources, particularly those that offer “cracked” versions, is a good way to get a lot more than you bargained for. These threats serve as a reminder that incorporating security into your gaming system is a smart move that can save you time and money while also protecting you from threats like these.
If you want to read more about gaming malware, read this blog!
