Updated on 2022-11-25: Infostealer market
A comprehensive report of the infostealer market from security firm Group-IB has found that the RedLine Stealer is today’s most popular infostealer, being used by 23 out of 34 gangs the company tracks. The company said that in the first seven months of 2022, these gangs collectively infected over 890,000 devices and stole more than 50 million passwords. Most of the infected devices were located in the US. Read more: Professional stealers: opportunistic scammers targeting users of Steam, Roblox, and Amazon in 111 countries
Updated on 2022-11-24: Fake MSI Afterburner download portals
Threat actors are using fake MSI Afterburner download portals to infect Windows gamers and power users with cryptominers and RedLine Stealer. Read more:
Updated on 2022-11-18: RedLine Stealer
Indian cybersecurity company CloudSEK has a technical report on RedLine Stealer, a very common Malware-as-a-Service operation available under different pricing models. Read more: Technical Analysis of the RedLine Stealer
Overview: RedLine infects Video Game publisher
2K, an American video game publisher, revealed suffering a data breach after an unauthorized third party hacked its help desk platform and targeted customers with fake support tickets delivering malware.
Hey folks, please read an important message from our Customer Support team. Thank you. pic.twitter.com/yKI18eL7mY
— 2K Support (@2KSupport) September 20, 2022
2K, an American video game publisher, acknowledged that hackers gained access to one of its vendors’ credentials to reach their help desk, used to provide support to all of its gamers. Attackers sent an email to certain players with a malicious link disguised as support tickets. When users open the tickets, they receive another email from claimed 2K representative Prince.K that included links to download a file containing the RedLine information-stealing malware. Read more: 2K Games says hacked help desk targeted players with malware
