Kaspersky experts have discovered new malicious applications that exploit the Minecraft game to achieve the goals of a fraudster. Minecraft is one of the most popular video games for making and breaking various types of blocks in three-dimensional worlds. And since it’s such a popular game, it’s no surprise that it has caught the attention of scammers.
Previously, Kaspersky researchers discovered more than 20 malicious apps on app stores offering additional Minecraft functionality and they were subsequently removed from official stores. The cybersecurity company has now found new ones that distribute adware or steal social media credentials.
“Kaspersky researchers analyzed various apps, including those available for download from the Google Play Store and claimed to be modpacks (user-created packages with additional game elements) for the game. , company experts have discovered various malicious applications that distribute adware or steal social media credentials, ”the company said.
Researchers have discovered several applications that distribute adware, software that bombards users with unwanted ads, thereby disrupting the normal use of their devices. Kaspersky states that “these apps don’t even have to be open for ads to be displayed at the request of a scammer. In addition, these applications can load additional modules that allow you to hide its icon, as well as suddenly opening a browser, application pages in Google Play and showing YouTube videos, which interferes with the use of the smartphone.
Kaspersky researchers also found two of these modules with basic functionality. In this version, “the app also displays ads in full screen (including when the app is not running) but they cannot hide the icon and launch a browser, YouTube or Google Play “said Kaspersky. For additional monetization, developers use the “in-app purchase” feature.
There are also several other apps, which steal social media accounts. According to the cybersecurity company, in one of the cases, a bogus ad network app and a bogus client used to advertise on TikTok was available on Google Play. If a user entered their Facebook credentials, then their account would be stolen.