Hackers posing as games stole Bitcoin wallet data in 45 countries

Kaspersky Lab experts discovered the Swarez trojan, which, among other things, stole data from cryptocurrency wallets. The company’s press service said.

The peak of the malware’s activity occurred in spring 2021. As bait, the attackers used games Among Us, Battlefield 4, Battlefield V, Control, Counter-Strike: Global Offensive, FIFA 21, Fortnite, GTA V, Minecraft, NBA 2K21, Need for Speed Heat, PUBG, Rust, The Sims 4 and Titanfall 2.

Attempts to download such files were recorded in 45 countries, including Russia.

Swarez is a dropper, whose main task is to launch other malware on a device. It was distributed in an archive containing a password-protected ZIP file and a text document with a key. Running the malware led to the decryption and activation of the Taurus stealer trojan.

The Taurus stealer can steal [simple_tooltip content=”files that allow a site to remember information about its visits”]cookies[/simple_tooltip], saved passwords, text files, data from autofill forms in browsers, and information about cryptocurrency wallets; it can also gather system information and take screenshots of the desktop.

Kaspersky Lab specialists recommended gamers to enable two-factor authentication and to avoid downloading files from questionable sites.

As reported by Avast, the creators of the malware Crackonosh have earned almost $2 million in Monero since 2018 through a hidden miner. They distributed their software, among other things, through popular games NBA 2019, GTA V, Far Cry 5, The Sims 4 and Jurassic World Evolution.

Follow ForkLog news on Twitter.