Friend
Professional
- Messages
- 2,653
- Reaction score
- 850
- Points
- 113
Fake pages are massively luring gamers into a digital trap.
With the start of the League of Legends (LoL) World Championship, cybercriminals have become more active on the network, using this event to distribute malware. Bitdefender experts warn that attackers are launching sophisticated campaigns to infect users in Europe through social media ads.
Scammers place ads offering to download LoL, but instead users download the dangerous Lumma Stealer virus. The malicious campaign that the researchers discovered is aimed at fans who want to participate in the events of the championship and looks like an official promotional post.
Clicking on the ad leads to a fake download page that resembles the official LoL website. Attackers use the "typosquatting" method, which is a small change in the domain for disguise. After clicking on the download button, users are taken to the Bitbucket storage, which contains a malicious archive.
The archive includes an executable file and a legitimate Windows (user32.dll) file. The executable file is a downloader that installs the Lumma Stealer virus, which steals data from infected devices. The Lumma Stealer is distributed in underground communities as a service using the Malware-as-a-Service (MaaS) model.
The Lumma Stealer is particularly dangerous because it injects itself into a legitimate Windows («bitlockertogo.exe) process, allowing it to remain undetected by simple antiviruses. The malware collects sensitive information such as passwords, credit card details, crypto wallets, and browser cookies.
This campaign has already reached more than 4000 people, mostly among the male audience — League of Legends fans. Having gained access to confidential information, fraudsters can "hijack" victims' social media accounts to further spread malware and deception. Stolen data is also sold on shadow markets and can be used for identity theft and phishing attacks.
Bitdefender experts advise adhering to certain cybersecurity rules to protect against such threats:
Nowadays, any network interaction requires constant vigilance and critical thinking. Even in moments of excitement and excitement, whether it's sports competitions or esports championships, it's important to remain cautious in the online space.
Simple precautions like checking download sources and using reputable antivirus software can save you from serious security issues with your personal data and finances. In a world where technology is becoming more sophisticated, our own discretion remains the best defense.
Source
With the start of the League of Legends (LoL) World Championship, cybercriminals have become more active on the network, using this event to distribute malware. Bitdefender experts warn that attackers are launching sophisticated campaigns to infect users in Europe through social media ads.
Scammers place ads offering to download LoL, but instead users download the dangerous Lumma Stealer virus. The malicious campaign that the researchers discovered is aimed at fans who want to participate in the events of the championship and looks like an official promotional post.
Clicking on the ad leads to a fake download page that resembles the official LoL website. Attackers use the "typosquatting" method, which is a small change in the domain for disguise. After clicking on the download button, users are taken to the Bitbucket storage, which contains a malicious archive.
The archive includes an executable file and a legitimate Windows (user32.dll) file. The executable file is a downloader that installs the Lumma Stealer virus, which steals data from infected devices. The Lumma Stealer is distributed in underground communities as a service using the Malware-as-a-Service (MaaS) model.
The Lumma Stealer is particularly dangerous because it injects itself into a legitimate Windows («bitlockertogo.exe) process, allowing it to remain undetected by simple antiviruses. The malware collects sensitive information such as passwords, credit card details, crypto wallets, and browser cookies.
This campaign has already reached more than 4000 people, mostly among the male audience — League of Legends fans. Having gained access to confidential information, fraudsters can "hijack" victims' social media accounts to further spread malware and deception. Stolen data is also sold on shadow markets and can be used for identity theft and phishing attacks.
Bitdefender experts advise adhering to certain cybersecurity rules to protect against such threats:
- Check URLs: Before clicking on advertising links, you should make sure that the domain is spelled correctly.
- Download software only from official sources: it is better to download games and programs from official websites or platforms like Steam.
- Be careful with ads: Cybercriminals often use attractive ads to redirect to malicious sites.
- Use antivirus software: Reliable security software can help detect and block dangerous files and phishing attacks.
Nowadays, any network interaction requires constant vigilance and critical thinking. Even in moments of excitement and excitement, whether it's sports competitions or esports championships, it's important to remain cautious in the online space.
Simple precautions like checking download sources and using reputable antivirus software can save you from serious security issues with your personal data and finances. In a world where technology is becoming more sophisticated, our own discretion remains the best defense.
Source
