Avid gamers wanting for cheats on YouTube are remaining targeted with backlinks to destructive password-protected archive data files built to put in the RedLine Stealer malware and crypto miners on compromised devices.
“The videos publicize cheats and cracks and offer guidelines on hacking preferred video games and program,” Kaspersky security researcher Oleg Kupreev stated in a new report printed nowadays.
Video games described in the movies are APB Reloaded, CrossFire, DayZ, Farming Simulator, Farthest Frontier, FIFA 22, Closing Fantasy XIV, Forza, Lego Star Wars, Sniper Elite, and Spider-Person, amid other people.
Downloading the self-extracting RAR archive qualified prospects to the execution of Redline Stealer, a coin miner, as well as a amount of other binaries that enable the bundle’s self-propagation.
Specifically, this is reached by means of an open up-resource C#-centered password stealer which is able of extracting cookies from browsers, which is then utilized by the operators to get unauthorized entry to the victim’s YouTube account and upload a video clip with a url to the destructive archive.
After a video clip is efficiently uploaded to YouTube, a person of the executables in the archive transmits a concept to Discord with a website link to the uploaded online video.
The findings occur as the complete amount of buyers who encountered gaming-related malware and unwelcome software package from July 1, 2021, by June 30, 2022 touched almost 385,000, with in excess of 91,000 files distributed beneath the guise of games these types of as Minecraft, Roblox, Need to have for Pace, Grand Theft Automobile, and Connect with of Duty.
“Cybercriminals actively hunt for gaming accounts and gaming laptop or computer resources,” Kupreev stated. “Stealer-form malware is often dispersed under the guise of video game hacks, cheats and cracks. All this is even more proof, if any have been essential, that unlawful computer software must be dealt with with intense warning.”
Found this report attention-grabbing? Abide by THN on Fb, Twitter and LinkedIn to browse more exclusive articles we publish.
Some elements of this article are sourced from: