EVGA

BloodyStealer 'advanced' trojan steals accounts from most major gaming platforms

Author
Flint 1760
CLASSIFIED Member
  • Total Posts : 4751
  • Reward points : 0
  • Joined: 2009/04/26 15:44:26
  • Status: offline
  • Ribbons : 18
2021/09/28 10:51:06 (permalink)
TechSpot - BloodyStealer 'advanced' trojan steals accounts from most major gaming platforms
 
PSA: If you are a gamer, watch out for a new trojan that can steal your account credentials for just about any major platform. Kaspersky just disclosed its research, so most antivirus suites should have protections against it soon, so keep your security updated.
 
On Monday, Kaspersky researchers detailed a new ‘advanced’ trojan called ‘BloodyStealer’ that targets users' gaming accounts. The trojan can scrape data from PCs, including passwords, cookies, bank card details, screenshots, and more. It can also steal client sessions from Bethesda, Epic Games, GOG, EA Origin, Steam, Telegram, and VimeWorld. Kaspersky found the malware back in March in an ad on an underground forum.
 
The researchers say the malware has already been deployed in Europe, Latin America, and the Asia-Pacific region despite being relatively new. BloodySteal also has tools that protect it against analysis.
 
Kaspersky says that the sellers use a ‘malware-as-a-service (MaaS) distribution model.’ It only costs around $10 per month or $40 for a lifetime license, making it attractive for those wishing to steal gaming accounts.
 
It also makes it highly profitable for thieves selling the account info. One seller on the dark web was found asking for $4,000 for a bulk list of 280,000 accounts. Customers looking to pick up an individual game profile can easily find them for less than 50 cents, making it just as attractive for those not wanting to use the trojan.
 
Although Kaspersky discovered the malware early in the year, it waited to disclose it publicly until it had mitigation methods in place for its antivirus platform.
 
The researchers advise other common-sense measures like using strong passwords with 2FA enabled, only downloading apps from trusted sources, making sure websites asking for your credentials are authentic, and not clicking links in emails from strangers. Kaspersky also provides guidance for maxing out the security settings on several platforms, including Steam, Battle.net, Origin, Twitch, and Discord.”
 
My thoughts:  This should have already been updated in your security software.


#1

3 Replies Related Threads

    Cool GTX
    EVGA Forum Moderator
    • Total Posts : 26850
    • Reward points : 0
    • Joined: 2010/12/12 14:22:25
    • Location: Folding for the Greater Good
    • Status: offline
    • Ribbons : 119
    Re: BloodyStealer 'advanced' trojan steals accounts from most major gaming platforms 2021/09/28 12:48:43 (permalink)
    thanks for the PSA

    RTX Project EVGA X99 FTWK 2xEVGA2080Ti EVGA1200P2  Nibbler EVGA X99 Classified 3-GPU Water cooled 1600P2 AIO Folding  X99 2x1080Ti FTW3 Hybrid, 1200P Thank you for your support I am a Volunteer Moderator - not an EVGA employee

    #2
    rjohnson11
    EVGA Forum Moderator
    • Total Posts : 86663
    • Reward points : 0
    • Joined: 2004/10/05 12:44:35
    • Location: Belgium
    • Status: online
    • Ribbons : 75
    Re: BloodyStealer 'advanced' trojan steals accounts from most major gaming platforms 2021/09/28 12:57:50 (permalink)
    Hopefully Windows Defender is already updated for this. 

    AMD Ryzen 9 5950X,  Corsair Mp600 Pro M.2 2TB, 128GB DDR4  Crosshair VIII Hero, Asus RX 6900 XT Associate Code: H5U80QBH6BH0AXF

    #3
    evga1081
    Superclocked Member
    • Total Posts : 108
    • Reward points : 0
    • Joined: 2021/09/06 03:48:48
    • Status: offline
    • Ribbons : 2
    Re: BloodyStealer 'advanced' trojan steals accounts from most major gaming platforms 2021/09/28 13:55:33 (permalink)
    "The researchers advise other common-sense measures like using strong passwords with 2FA enabled, only downloading apps from trusted sources, making sure websites asking for your credentials are authentic, and not clicking links in emails from strangers. Kaspersky also provides guidance for maxing out the security settings on several platforms, including Steam, Battle.net, Origin, Twitch, and Discord.”
     
    The forget the golden goose of them all: ad blockers.
    #4
    Jump to:
  • Back to Mobile