Cybercriminals Exploit Gamers with Fake Playtest Scams

Severity: High (Score: 64.5)

Sources: Bitdefender

Summary

Cybercriminals are targeting gamers with fake invitations to test unreleased video games, primarily using platforms like Steam, Discord, and YouTube to distribute malware and steal accounts. Attackers impersonate game studios or hijack legitimate accounts to spread convincing 'early access' offers, leading victims to download malicious files or log in through spoofed websites. This scam exploits the common practice of closed beta tests and early access, making it particularly effective. Victims often receive unsolicited messages that mimic real developer communication, lowering their suspicion. Once engaged, victims are directed to fake websites or Discord servers designed to appear legitimate. The attackers then prompt victims to download malware-laden files or enter credentials on phishing pages. Notable campaigns include impersonations of developers behind games like Sand and Battlefield 6, with significant success due to community hype. A concerning case involved a playtest for Chemia, which was found to contain multiple types of malware. The ongoing nature of these scams poses a significant risk to gamers' personal and financial information. Key Points: • Cybercriminals are targeting gamers with fake playtest invitations to distribute malware. • Attackers impersonate game studios and hijack accounts to create convincing scams. • Victims risk losing personal and financial information through phishing and malware downloads.

Key Entities

• Malware (attack_type)
• Phishing (attack_type)
• T1003 - OS Credential Dumping (mitre_attack)
• T1204.002 - Malicious File (mitre_attack)
• T1566.001 - Spearphishing Attachment (mitre_attack)
• T1566.002 - Spearphishing Link (mitre_attack)
• Discord (platform)
• Steam (platform)
• YouTube (company)