In short: Security researchers have discovered another malware campaign designed to trick people who seek to cheat in online games. Players who want to gain an unfair advantage over their opponents in Valorant may be met by a different tool designed to steal their sensitive information.
Cheaters in popular multiplayer games aren’t new, and the pandemic has seen their numbers to get up considerably, as more and more people have turned to gambling as a source of entertainment. Companies have tried to address this growing problem with improved anti-cheat technologies, but most efforts have been undermined by source code leaks as well as an army of motivated cheat developers who quickly adapt to any new development. in this space.
Valorant’s anti-cheat software has been a big source of controversy for using kernel-level drivers to thwart cheaters, but it’s also led to fewer of them for this particular title. That said, some people are desperate enough to scour the web for anything that might give them an unfair advantage over other gamers, so malicious actors are fueling demand with malware campaigns.
According to Korean security researchers at A SECOND, some Valorant players are now tricked into downloading and running software that is promoted on YouTube as a game hack, but in reality is just a delivery system for a powerful information stealer called RedLine. Malicious actors are able to do this quite often as they can easily bypass content submission reviews and create a new account each time an account is reported and blocked.
As with all cheats, people downloading alleged Valorant cheats are advised to disable their anti-virus software and use elevated privileges to allow smooth installation and operation of these cheats. However, this is also what malware needs to silently install itself on a system without the need for complicated exploits.
RedLine is one of the most widely deployed information stealers, and once installed it will export a wide range of sensitive data including passwords, credit card information, browser cookies, bookmarks , browser history and cryptocurrency wallets as well as account credentials for things like Steam, Discord and more. The stolen information is packaged as a zip file and uploaded to a Discord server.
Social engineering campaigns for malware like this are becoming more common. Last year, the cheat software for Call of Duty: Warzone was discovered to contain malware known as a “dropper”, which can take over a player’s system and install additional malware. . It goes without saying that you shouldn’t spoil other players’ fun in an online game, but these types of malware campaigns are a reminder that cheating is not without risk, regardless of what cheat makers will tell you. of their offers.