New malware steals your Steam, Epic, EA accounts — how not to get pwned

1. Habitation
2. News
3. Security

New malware steals your Steam, Ballsy, EA accounts — how not to get pwned

(Image credit: EA)

Look out, PC gamers — new malware is going afterwards your Steam, Ballsy Games, EA Origin, Bethesda and GOG accounts.

The malware, dubbed "BloodyStealer" by its discoverers at Kaspersky, swipes session cookies, passwords and credit cards, takes screenshots, profiles infected PCs and tries to hibernate from antivirus software.

• These croaky games will infect your PC with malware that's hard to remove
• The best PC games y'all tin can play correct now
• Plus: iPhones, TVs and other devices could go offline this calendar week — here's why

It's active in Europe, the Asia-Pacific region and Latin America, but like a lot of malware, it won't function on computers in Russian federation or other old Soviet republics.

"Gaming accounts are clearly hunted by cybercriminals, so if you want to enjoy gaming peacefully and not worry that your in-game credit or accounts will exist gone, make sure you protect your account through ii-cistron authentication and use a reliable security solution to protect your devices," said Kaspersky security researcher Dmitry Galov .

Stolen accounts for online gaming platforms tin can be sold on the black market, frequently packaged in bundles. Even session cookies that provide only temporary access to other people's games are worth something.

Would-be bad guys can "subscribe" to BloodyStealer for about $10 per month, or tin get a lifetime license for $40. (Malware coders often use subscription models to distribute their wares to criminals, sometimes with tech support built in.)

It's up to the subscribers to package and deliver the malware to victims. The infection vectors may vary, but oft come up in the form of pirated games, license-code "cracks" or even software updates.

How to avoid BloodyStealer

To avoid being infected by BloodyStealer or similar malware, don't download pirated or croaky games, be wary of links inside game chats, install and run some of the best Windows 10 antivirus software — and scan whatever you download with that antivirus software before you lot run the installation procedure.

To avoid having your online gaming account stolen past whatsoever ways, utilise two-factor authentication (2FA) as indicated above — here's how to ready 2FA on Ballsy Games — log out of game accounts when you're not using them, and use one of the best countersign managers to generate strong, unique passwords and "remember" them all.

"BloodyStealer is a prime number example of an advanced tool used by cybercriminals to penetrate the gaming market," wrote Galov and fellow Kaspersky researchers Leonid Bezvershenko and Marc Rivero in a technical report.   With its efficient anti-detection techniques and attractive pricing, it is certain to be seen in combination with other malware families before long."

Paul Wagenseil is a senior editor at Tom'due south Guide focused on security and privacy. He has likewise been a dishwasher, fry cook, long-haul commuter, code monkey and video editor. He's been rooting effectually in the data-security space for more xv years at FoxNews.com, SecurityNewsDaily, TechNewsDaily and Tom'due south Guide, has presented talks at the ShmooCon, DerbyCon and BSides Las Vegas hacker conferences, shown upward in random TV news spots and fifty-fifty moderated a panel discussion at the CEDIA habitation-technology briefing. You can follow his rants on Twitter at @snd_wagenseil.

Source: https://www.tomsguide.com/news/bloodystealer-gaming-malware

Posted by: keeslerthalle.blogspot.com

Share this post