Kaspersky warns - gaming trap for crypto: new malware "Stealka" steals players' wallets.
Do you play games and have cryptocurrencies? Kaspersky claims that you need to be careful. Cybercriminals have found a new attack strategy on cryptocurrency wallets - this time under the guise of what players are most often looking for: mods for games and free software. Kaspersky has revealed details of a new malicious software called "Stealka" that targets users of Microsoft Windows.
Camouflaged as games and cracks
The malware, discovered in November, spreads through legitimate platforms like GitHub, SourceForge, and Google Sites. It takes the form of mods for popular games - especially Roblox - and cracks for applications like Microsoft Visio. The attackers go a step further by creating entire fake websites that, according to Kaspersky researcher Artem Ushkov, look "quite professional". They likely utilize AI tools. Stealka has a "sophisticated arsenal of capabilities," but its most dangerous specialization is targeting data from browsers based on Chromium and Gecko engines. This poses a threat to over 100 different browsers, including Chrome, Firefox, Opera, Yandex, Edge, and Brave.
The main target is autocomplete data - usernames, passwords, addresses, and payment card information. But that's not all. The malware also attacks the settings and databases of 115 browser extensions, including cryptocurrency wallets, password managers, and 2FA services.
