- Malware database vx-underground has warned of a new info-stealing malware in cyberspace that is targeting Call Of Duty video gamers, especially those who are cheaters.
A new flood of mystery malware has reportedly been targeting video gamers and draining their Bitcoin (BTC) wallets as part of a new info stealer campaign, which also has been targeting cheaters.
Malware information repository vx-underground said in a March 28 X post it was aware of a “currently unidentified Threat Actor” using malware to steal login and other credentials of those using pay-to-cheat video game software.
Over the past couple of days we have become aware of malware targeting gamers! More specifically, a currently unidentified Threat Actor is utilizing an infostealer to target individuals who cheat (Pay-to-Cheat) in video games.
A Call of Duty cheat provider (PhantomOverlay) was…
— vx-underground (@vxunderground) March 27, 2024
The attacks target players, including those who buy cheating software, and have compromised over 4.9 million accounts for Activision Blizzard users and its game store Battle.net along with accounts for a game-focused trading site Elite PVPers and cheat software markets PhantomOverlay and UnknownCheats.
See Also: Top Three Data Privacy Issues Facing AI Today
“Impacted users have begun reporting being victims of crypto-draining — their Electrum BTC wallets have been drained. We do not have any information on the amount of money stolen,” vx-underground wrote.
In a March 27 Telegram post, PhantomOverlay claimed the number of hacked accounts “are inflated” as over half of the logins in a database it viewed “are invalid garbage.”
It added the malware “seems to be an entire network of free/cheap software” that has originated from “some latency program, VPN, or something that millions of gamers are using.”
“It’s the largest infostealer malware campaign in gaming/cheating community history.”
In a separate post, PhantomOverlay claimed it has “a pretty good idea of where the malware is coming from but the malware gang is aware of suspicions on them [and] has made it increasingly hard to prove anything.”
Activision Blizzard had contacted the cheat-selling site and “will help us assist millions of infected users,” PhantomOverlay said.
An Activision Blizzard spokesperson said that it was aware of claims that credentials “across the broader industry could be compromised from malware from downloading or using unauthorized software.”
It said its servers “remain secure and uncompromised” and recommended users change their password if they want to ensure their accounts are protected.
In its post, vx-underground wrote that PhantomOverlay was “alerted of fraudulent activity when user accounts began making unauthorized purchases.”
PhantomOverlay contacted the alleged victim, and since then, more have been identified, it said.
#Binance #WRITE2EARN
