Connect with us

TECHNOLOGY

Malware that steals credentials, credit card details abuse biggest new games 

September 15, 2022 7:19 p.m.

In the first half of 2022, Kaspersky researchers detected increased activity of cybercriminals abusing gamers. The number of users attacked by malicious software, which gathers sensitive data and spreads under the guise of some of the most popular gaming titles, has increased by 13% compared to the first half of 2021. 

In attempts to download new games from untrustworthy resources for free, players actually received malicious software, losing their gaming accounts and even money. These and other findings are part of the gaming-related threats report issued by Kaspersky. 

To assess the current landscape in gaming risks, Kaspersky experts observed the most popular PC and mobile games-related threats. Overall, between 1 July 2021 and 30 June  2022, Kaspersky security solutions detected more than 384,000 users affected by almost 92,000 malicious or unwanted unique files that mimicked 28 games or series of games.

In addition to the large number of downloaders that are able to install other unwanted programs, and adware, Kaspersky researchers even detected Trojan-Spies – a category of spyware capable of tracking any data entered on the keyboard and taking screenshots.

The research also revealed a growth in attacks made with malicious software that steals sensitive data from infected devices. It included Trojan-PSW, which gathers victims’ credentials, Trojan-Banker, that steals payment data, and Trojan-GameThief, which collects login information for gaming accounts. 

From July 1st, 2021 to June 30th, 2022 Kaspersky security solutions detected a total of 3,705 unique files distributing this malicious software under the guise of popular games or series of games. In the first half of 2022, Kaspersky researchers observed a 13 percent increase in the number of users attacked with it in comparison to the first half of 2021. The number of such unique files used to infect users also increased in the first half of 2022 by nearly a quarter, compared to the same period in 2021: 1,868 and 1,530 files, respectively.

Most often, users receive malicious files when they try to download games not from official sites, but from third-party webpages. This is especially true if a new game is quite expensive and the player wants to save money by finding a copy for free on untrustworthy sites. However, they will lose much more than if they had bought a legitimate version. For example, many malicious files steal login information for gaming accounts, banking details and even crypto wallet data by infecting devices.

Attackers purposely seek to spread threats under the guise of games that either have a huge captive audience or that have only recently been released and are constantly on gamers’ radars. Well-known games such as Roblox, FIFA or Minecraft, for example, as well as the new parts of big series of games, released during the last year – Elden Ring, Halo, and Resident Evil – were actively abused by attackers who spread RedLine malware under their guise.

RedLine is password-stealing software, which extracts sensitive data from the victim’s device such as passwords, saved bank card details, cryptocurrency wallets, and credentials for VPN services. 

From July 1, 2021 to June 30, 2022 Kaspersky solutions detected 2,362 unique users attacked with RedLine, spread under the guise of popular games, which makes it the most active threat family for the period given. Redline is usually sold for a very low price on various hacker forums, therefore, it has huge popularity among cybercriminals.

In addition to spreading malicious files, attackers continue to actively create and spread new phishing pages in the gaming sphere. For the first time Kaspersky experts discovered a new scheme of phishers attacking gamers. Mimicking the whole interface of in-game stores for CS:GO, PUBG and Warface, scammers create fraudulent pages, offering potential victims a decent arsenal of various weapons and artifacts for free. 

To receive the gift, players need to enter login data for their social network accounts, such as Facebook or Twitter. After taking over accounts, attackers are likely to search through personal messages for card details, or ask various friends of the victim for money, preying on their trust and carelessness.

https://lh6.googleusercontent.com/IzIVXFoTvAw8K7rdyTnhPlEi8Y9D60aeSk2Ox-rsiaCpfGkt4EeNgIAxHNV99GZfl7bhclATDMrmZ6wPIy5wgJoE496s2nBkqu3QgEk1Npc62ujcrWKhjPoeQXu82FEjF3f7Z88N5K56rnvbkwmVFIs

Scammers create fake in-game store mimicking the PUBG mobile interface. The scheme encourages users to log in using their social media credentials

“During the pandemic the gaming industry was greatly boosted, increasing the number of gaming fans several times over. As we can see, cybercriminals are actively abusing this trend, creating more and more new schemes and tools to attack players and steal their credit card data and even game accounts, which can contain expensive skins that can later be sold. We expect to see new types of attacks on gamers in the next year. For example, strikes on Esports, which are now gaining huge popularity around the world. That’s why it’s so important to always be protected, so you don’t lose your money, credentials, and gaming account,” comments Anton V. Ivanov, senior security researcher at Kaspersky.

Read about other gaming-related threats in 2022 in the full report on Securelist.

To stay safe while gaming, Kaspersky recommends:

  • It is safer to download your games from official stores like Steam, Apple App Store, Google Play or Amazon Appstore only. Games from these markets are not 100 % secure, but they at least are checked by store representatives and there is some kind of screening system: not every app can get into these stores.
  • If you wish to buy a game that is not available through major stores, purchase them from the official website only. Double-check the URL of the website and make sure it is authentic.
  • Beware of phishing campaigns and unfamiliar gamers. Do not open links received by email or in a game chat unless you trust the sender. Do not open files you get from strangers.
  • Do not download pirated software or any other illegal content, even if you are redirected to it from a legitimate website.
  • A strong, reliable security solution will be a great help to you, especially if it will not slow down your computer while you are playing, but at the same time, it will protect you from all possible cyberthreats. For example, Kaspersky Total Security works smoothly with Steam and other gaming services.
  • Use a robust security solution to protect yourself from malicious software and its activity on mobile devices, such as Kaspersky Internet Security for Android.

TECHNOLOGY

Kaspersky reports more than 340, 000 attacks with new malicious WhatsApp mod

November 20, 2023 8:52 p.m.

Kaspersky researchers recently uncovered a new malicious WhatsApp spy mod, which is now proliferating within another popular messenger, Telegram.

While the modification serves its intended purpose by extending user experience, it also clandestinely harvests personal information from its victims. With an extensive reach surpassing 340,000 in just one month, this malware predominantly targets users who communicate in Arabic and Azeri, though victims have been identified globally.

Users often turn to third-party mods for popular messaging apps to add extra features. However, some of these mods, while enhancing functionality, also come with hidden malware. Kaspersky has identified a new WhatsApp mod offering not only additions like scheduled messages and customizable options, but it also contains a malicious spyware module.

The modified WhatsApp client’s manifest file includes suspicious components (a service and a broadcast receiver) not present in the original version. The receiver initiates a service, launching the spy module when the phone is powered on or charging. Once activated, the malicious implant sends a request with device information to the attacker’s server. This data covers IMEI, phone number, country and network codes, and more. It also transmits the victim’s contacts and account details every five minutes as well as being able to set up microphone recordings and exfiltrate files from external storage.

The malicious version found its way through popular Telegram channels, predominantly targeting Arabic and Azeri speakers, with some of these channels boasting nearly two million subscribers. Kaspersky researchers alerted Telegram about the issue. Kaspersky’s telemetry identified over 340,000 attacks involving this mod in just October. This threat emerged relatively recently, becoming active in mid-August 2023.


Examples of Telegram channels distributing malicious mods

Azerbaijan, Saudi Arabia, Yemen, Turkey, and Egypt witnessed the highest attack rates. While the preference leans towards Arabic and Azerbaijani-speaking users, it also impacts individuals from the US, Russia, UK, Germany and beyond. 

Kaspersky products detect the Trojan with the following verdict Trojan-Spy.AndroidOS.CanesSpy.

“People naturally trust apps from highly followed sources, but fraudsters exploit this trust. The spread of malicious mods through popular third-party platforms highlights the importance of using official IM clients. However, if you need some extra features not presented in the original client, you should consider employing a reputable security solution before installing third-party software, as it will protect your data from being compromised. For robust personal data protection, always download apps from official app stores or official websites,” comments Dmitry Kalinin, security expert at Kaspersky.

To stay safe, Kaspersky experts recommend: 

  • Use Official Marketplaces: Download apps and software from reputable and official sources. Avoid third-party app stores, as the risk that may host malicious or compromised apps is higher.
  • Use reputable security software: Install and maintain reputable antivirus and anti-malware software on your devices. Regularly scan your devices for potential threats and keep your security software up to date. Kaspersky Premium protects its users from known and unknown threats. 
  • Educate yourself about common scams: Stay informed about the latest cyber threats, techniques, and tactics. Be cautious of unsolicited requests, suspicious offers, or urgent demands for personal or financial information. 
  • Third-party software from popular sources often comes with zero warranty. Keep in mind that such apps can contain malicious implants, e. g. because of supply chain attacks.
Continue Reading

TECHNOLOGY

Globe’s next-gen leaders delve into AI and humanity at International Design Conference

October 27, 2023 3:45 p.m.

Globe’s next generation leaders shared invaluable insights on the blend of Artificial Intelligence (AI) and the human experience at the 7th International Design Conference, an event that marked the 50th anniversary of the Design Center of the Philippines.

Returning with more disruptive design concepts and an immersive environment that encouraged attendees to rethink limits, the two-day conference, held in cooperation with Globe, unveiled the evolving landscape and transformative potential of design.

Design luminaries and game-changers from the design sector and the Philippine creative economy collaborated to captivate audiences with immersive keynote presentations, provocative fireside chats, inspiring case studies, future-focused visioning, and an industry meet-up.

Globe’s Wil Sarmiento, Director and Head of Customer Lifecycle, and Paolo Toledo, Director and Head of Creatives, stood out with their forward-thinking perspectives.  They joined world-renowned personalities such as award-winning design critic and author Alice Rawsthorn, program director of the Danish Design Centre Christina Melander; Sarah ichioka, founding director of Desire Lines; Dr. Anna Whicher, Policy Consultant of the “Making Design Count: The Value and Impact of Design on the Philippine Economy”; and Professor Daniela Bohlinger, Sustainability Design Pioneer.

Sarmiento, delivered a keynote that delved into the future skills in the age of human-machine collaboration, underscoring the potential of a symbiotic relationship that harnesses the strengths of both.

“Remember the value that you bring to the table: creativity, empathy, and the ability to change. AI will open doors that only humanity will be able to walk through,” he pointed out.

In a thought-provoking panel discussion led by Beth MacDonald, Chief People Officer of Biocellion SPC, Toledo, highlighted the intrinsic value of human intuition and design in an AI-driven world.

“Being human is the greatest design of all. While technology provides efficient solutions, it simply answers “what’s right” or “what’s needed”. BUT it’s us humans who trigger innovation and purpose. We hold the power to ask “what’s next?” and more importantly, “what for?” he said.

The International Design Conference, with its rich legacy of championing design innovation, is a thought leadership platform that celebrates the intersection of design, business, technology, and policy while thriving at the edge of disciplines to remain provocative and to use design and creativity to ask difficult questions and to take the audience to new territories.

Globe’s design leaders not only contributed to this dialogue but also illuminated the path forward, emphasizing a future where technology and human ingenuity seamlessly converge.

(Left) Paolo Toledo, Globe Head of Creatives; (Right) Wil Sarmiento, Globe Head of Customer Lifecycle

For more information about the International Design Conference and its key takeaways, please visit  www.facebook.com/DTI.DesignCenterPH.

To learn more about Globe, go to https://www.globe.com.ph/.

Continue Reading

TECHNOLOGY

LG honored with multiple awards for Innovative Product Design at IDEA 2023

September 4, 2023 3:11 p.m.

LG Electronics (LG) has once again been recognized for outstanding product design, earning 13 awards at the International Design Excellence Awards (IDEA) 2023, announced at the International Design Conference in New York, New York.

The LG PuriCare AeroTower, an air purifier that can also be used as a side table and mood lamp, was honored with a Bronze Award at yesterday’s conference. Offering personalized performance and design options, as well as a compact form factor, LG’s air purifier can be tailored to match any home interior and is ideal for smaller spaces. With its latest win, the LG PuriCare AeroTower has now been recognized by all three of the world’s top industrial design award programs: IDEA, the Red Dot Award and iF Design Award.

Another IDEA 2023 honoree, the LG OLED Flex (model LX3) is an innovative TV featuring the world’s first bendable 42-inch OLED screen. The LX3, which made its international debut at IFA last year, offers a new level of screen customizability – its self-lit display able to go from completely flat to spectacularly curved with the push of a button.

“The achievement from this year’s IDEA is the result of the synergy between customer experience-centered technology and aesthetics,” said Hwang Sung-gyul, head of the Design Management Center at LG Electronics. “We will continue to improve the level of perfection by reflecting innovative customer experiences beyond the existing framework in product design by constantly communicating and empathizing with customers.”

Organized annually by the Industrial Designers Society of America (IDSA), IDEA is one of the world’s leading design award programs, recognizing exceptional achievements in the area of industrial design while taking into consideration various factors relating to design strategy, digital interaction, the environment, and social impact, when selecting award recipients.

Life’s about more than having the latest technology, rather, it’s about the experiences technology creates that impact our lives. LG Electronics Philippines delivers consumer electronics through top-of-the-line home entertainment appliances that prepare Filipinos for their greatest moments. LG promises to bring “Innovation for a Better Life” nationwide – from Luzon, to Visayas, and Mindanao. LG products are available via lg.com/ph and through its flagship stores in Lazada and Shopee. For more information, visit and follow their social media channels on FacebookInstagramTiktok and Youtube (@lgphilippines).

Continue Reading