Over 500 malicious GitHub repositories linked to the Stargazers Ghost Network have been found.
The malware is written in Java, making it hard for antivirus tools to detect.
Players are urged to download mods only from trusted sources to stay protected.
If you are a Minecraft player who frequently plays the game, you should read on. A new cybersecurity threat has emerged from the vast Minecraft gaming community. This comes after researchers warned of an ongoing malware campaign aimed at players’ personal data, including sensitive information such as login credentials, authentication tokens, and even cryptocurrency wallets.
SurveyAccording to Check Point Research, the Stargazers Ghost Network, a cybercriminal group, is orchestrating the campaign. It operates as a distribution as a service (DaaS) operation, and the Stargazers have spent several years delivering custom-built malware and information stealers to unsuspecting users on behalf of other malicious actors.
How the Attack Works
At the moment, the group is taking advantage of the thriving modding community in Minecraft, which consists of over a million developers who produce and share unique game modifications. The researchers claim that the attackers are using GitHub to create and spread fake modes and cheats that are deftly disguised to look like genuine player tools. Among the fake mod names found are Taunahi, Oringo, FunnyMap, Polar Client, and Skyblock Extras.
Also read: Apple iPhone 16 Pro Max price drops by Rs 13,500: How to grab this deal
More than 500 GitHub repositories, including both original and forked versions, were implicated in the campaign, according to Check Point Research. The malware, like Minecraft itself, is written in Java and is primarily distributed through these repositories. The majority of antivirus programs are unable to detect the malware because of this programming preference.
What is the scale and impact
The campaign seems to have reached a large number of players, as evidenced by the malicious links receiving thousands of views. The infostealers pose a serious threat to both casual and competitive gamers because they are designed especially for the Java environment and the Minecraft ecosystem, bypassing standard security measures.
What’s at risk?
Several impacts like account hijacking, unauthorised access to the accounts, and crypto wallets can be faced by gamers.
How to stay safe
It is recommended that all players download mods from reliable and authentic sources. Monitoring system activity and using sophisticated malware detection tools can also assist in spotting suspicious behaviour before harm is done.
Follow Us
Ashish Singh
Ashish Singh is the Chief Copy Editor at Digit. He's been wrangling tech jargon since 2020 (Times Internet, Jagran English '22). When not policing commas, he's likely fueling his gadget habit with coffee, strategising his next virtual race, or plotting a road trip to test the latest in-car tech. He speaks fluent Geek. View Full Profile
