EXPERTS of global cybersecurity firm Kaspersky have discovered cybercriminals launched more than seven million attacks on children, exploiting popular game titles in 2022.
Kaspersky’s latest report titled: “The dark side of kids’ virtual gaming worlds,” reveals the risks for young players in online gaming and that focused attacks on this age group increased by 57 percent compared to 2021.
Phishing pages used by cybercriminals to target young players mostly mimicked global titles including Roblox, Minecraft, Fortnite and Apex Legends games.
To reach parents’ devices, cybercriminals purposely create fake game sites evoking children’s interest to follow phishing pages and download malicious files, the cybersecurity firm said.
Kaspersky experts analyzed threats related to the most popular online games for three- to 16-year-old kids. Kaspersky security solutions detected more than seven million attacks from January 2022 and December 2022.
In 2021, cybercriminals attempted 4.5 million attacks, resulting in a 57 percent increase in attack attempts in 2022.
In 2022, 232,735 gamers encountered almost 40,000 files, including malware and potentially unwanted applications, that were disguised as the most popular children’s games.
Since children of this age often do not have their own computers and play from their parents’ devices, the threats spread by cybercriminals are most likely aimed at obtaining credit card data and credentials of the parents.
In the same period, nearly 40,000 users tried to download a malicious file, mimicking Roblox, a popular kids’ game platform. This resulted in a 14 percent increase in the number of victims, compared to 33,000 gamers attacked in 2021.
No knowledge of cybersecurity
Since half of Roblox’s 60 million users are under the age of 13, the majority of victims of these cybercriminals’ attacks are potentially children who lack knowledge of cybersecurity.
According to Kaspersky statistics, phishing pages used by cybercriminals to target young players primarily mimicked Roblox, Minecraft, Fortnite and Apex Legends games.
In total, over 878,000 phishing pages were created for these four games in 2022.
“When focusing on young players, cybercriminals don’t even bother to make deception schemes less obvious. They hope children and teenagers have little or no experience or knowledge of cybercriminal traps and will easily fall for even the most primitive scams,” said Vasily Kolesnikov, security expert at Kaspersky, in a statement.
One of the most common social engineering techniques targeting young players involves offers to download popular cheats and mods for games. On a phishing site the user may get a whole manual on how to install the cheat properly.
Kaspersky noted that what’s particularly interesting is that there are specific instructions making a point about the need to disable the antivirus before installing a file. This may not alert young players, but it might be specially created so malware avoids detection on the infected device. The longer the user’s antivirus is disabled, the more information might be collected from the victim’s computer.
Because of this, Kolesnikov said parents need to be especially careful about what apps their children download, whether their devices have trusted security solutions installed and should teach their children about how to behave online. (with PR)