<ul data-eligibleForWebStory="true"><li>Cybercriminals are targeting Minecraft players to steal login credentials and crypto wallet information.</li><li>Check Point Research discovered a large-scale operation by the Stargazers Ghost Network distributing malware and infostealers under the guise of Minecraft mods.</li><li>The group created hundreds of malicious GitHub repositories impersonating popular Minecraft mods like Skyblock Extras and Polar Client.</li><li>These repositories have garnered thousands of views, indicating significant success for the cybercriminals.</li><li>The malware used in the attack is written in Java, making it undetectable by antivirus software.</li><li>Approximately 500 GitHub repositories were part of this operation aimed at Minecraft players.</li><li>The attackers used stars on GitHub to boost the repositories' legitimacy and increase infection chances.</li><li>The attack involves two phases: targeting Minecraft account tokens and user data in the first phase, followed by deploying an infostealer called '44 Caliber' to steal browser data, VPN information, and crypto wallet data in the second phase.</li></ul>

Minecraft players watch out - these fake mods are hiding password-stealing malware

Discover more