Malwarebytes Labs Discovers Crypto Mining Malware Stealing Fortnite Video Gamers’ Bitcoin
Latest Malwarebytes Labs’ report revealed that a new malware has been concealed as “cheat tools”, in which Fortnite Gamers are said to be the most impacted. The malware supposedly has the ability to not only steal users’ Bitcoins but also personal data.
The report, which was put together by the team’s Malware Analyst, Christopher Boyd, stated that the disguise was lifted while searching YouTube videos, offering “season passes”, which were deemed “free” for Android users.
Several videos found on YouTube promoted the notion of “free passes” and cheats. As per the image shared, investors and gamers should watch out for videos such as “*Fortnite Aimbot*” and “New Season 6 Fortnite Hack Cheat Free Download” to name the least. The report also revealed that a video has since been removed, however, it only did so after nearly 120,000 views.
The entire process to track down the malware was allegedly not so simple. It started off by viewing YouTube videos, prompting users to a page dubbed, “Sub2Unlock”, which requested users to subscribe to a page, and ultimately taking them to another website, “bt-fortnite-cheats(dot)tk”. The aforementioned site claims to offer the necessary cheat tools, however, they are not “cheats” that are being downloaded, but the malware itself!
At the time of writing, it has been disclosed that there have been 1,207 downloads. This means that that many people have since been attacked – theft is surely to have occurred.
Based on the claims made, upon downloading the malware, it “performs some basic enumeration on details specific to the infected computer”. Further analysis found that the type of data that was stolen include the likes of “browser session information, cookies, Bitcoin wallets and also Steam sessions”.
In addition to the malware, users would have automatically downloaded a “readme file”, which might have induced gamers of a deal indicating the price of cheats as “$80 bitcoin”, given they are interested in purchasing them. Those who do express interest, seem to have been offered a telegram for further discussion.
Among all scams, this is by far intense, as gamers are less likely to catch the malware in action. This only goes to show that anything advertised as “free” should be thought over, as there is always something fishy in said offers.
To read the report in complete, check out: blog.malwarebytes.com/cybercrime/2018/10/fortnite-gamers-targeted-by-data-theft-malware/