close
Monday October 14, 2024

Cyberattacks on children’s games grow 30pc in 1H2024

By Our Correspondent
September 20, 2024
A boy seen playing a video game. — Vecteezy/File
A boy seen playing a video game. — Vecteezy/File

LAHORE: The number of unique users targeted by cybercriminals using popular children’s games as a lure surged by 30 per cent in the first six months of 2024 compared to the last half of 2023.

According to the Russia-based cybersecurity firm Kaspersky, researchers analyzed gaming risks for young players, and discovered that more than 132,000 users had been targeted by cybercriminals.

Kaspersky investigated the threats disguised as popular kids’ video games and analyzed the period from July 1, 2023, to June 30, 2024. Throughout the reported period, Kaspersky security solutions detected more than 6.6 million attempted attacks, where cybercriminals used the brands of the kids’ games as a lure.

Out of the 18 games chosen for this research, the majority of attacks were related to Minecraft, Roblox and Among Us. According to Kaspersky’s statistics, more than three million attempted attacks under the guise of Minecraft were launched throughout the reported period.

Most likely, cybercriminals chose this method of attack based on the popularity of games among players, as well as the ability of gamers to use cheats and mods. Since most of mods and cheats are distributed on third-party websites, attackers disguise malware by posing as these applications.

Cybercriminals are increasingly using AI to automate and personalize phishing attacks that are more likely to deceive young gamers.One of the most common scams in gaming is the offer to receive new skins for users’ character -- essentially clothing or armour -- that enhance the hero’s skills. Some skins are common, while others are extremely rare and, therefore, more desirable.

The scammers aren’t actually after personal data like credit card details; they’re using the guise of gaming to lure users into another hoax -- one involving fake downloads, prize claims, or other deceptive offers. The whole process is a clever way to redirect users to a different, more dangerous scam under the pretence of a legitimate verification step.