menu
techminis

A naukri.com initiative

New

google-web-stories
Home

>

Info. Security News News

>

Malicious ...
source image

Securityaffairs

5d

read

93

img
dot

Image Credit: Securityaffairs

Malicious Minecraft mods distributed by the Stargazers DaaS target Minecraft gamers

  • Malicious Minecraft mods distributed by the Stargazers DaaS target Minecraft gamers.
  • Java-based malware distributed through fake cheat tools on GitHub is targeting Minecraft users via the Stargazers Ghost Network.
  • The malware, disguised as cheat tools like Oringo and Taunahi, uses a multi-stage infection chain with Java/.NET stealers to extract sensitive data.
  • Check Point researchers detected this campaign aimed at Minecraft's vast modding community of over a million active users.
  • The malware, identified since March 2025, poses as Java mods on GitHub, exploiting Minecraft players' trust.
  • The attack involves a Java-based loader checking for virtual machines and analysis tools, followed by a second-stage Java stealer extracting game and Discord data.
  • A third-stage .NET stealer collects browser credentials, crypto wallets, VPN data, and more, sending it to a Discord webhook.
  • The Russian-speaking threat actors behind this campaign carefully evade sandbox analysis by camouflaging the malware as Forge plugins.
  • The report advises caution when downloading third-party content related to Minecraft to avoid falling victim to such malicious activities.
  • The Stargazers Ghost Network actively distributes this malware, exploiting the Minecraft player community to deploy stealers that compromise user data.
  • The malware campaign underscores the growing trend of using gaming communities as targets for malware distribution, emphasizing the need for vigilance and cybersecurity awareness.
  • Indicators of Compromise provided in the report can help identify potential malicious activities targeting Minecraft users.
  • The threat actor involved in this campaign is suspected to be of Russian origin, highlighting the global reach of cyber threats in popular online platforms.
  • The disguised malware poses a significant risk to Minecraft players seeking mods, showcasing the importance of verifying sources before downloading any third-party content for the game.
  • The campaign's use of Java-based loaders and .NET stealers demonstrates the sophistication of cyber attacks targeting the gaming community.
  • Vigilance and caution are paramount in the gaming community to prevent falling victim to malicious activities like the Stargazers DaaS campaign targeting Minecraft gamers.
  • The Stargazers DaaS malware distribution campaign targeting Minecraft users serves as a reminder of the persistent threats faced by online gaming communities in the cybersecurity landscape.

Read Full Article

like

5 Likes

share

1 Share

For uninterrupted reading, download the app