Activision Investigates Info-Stealer Targeting Gamers

The video game publisher Activision is currently investigating a sophisticated malware campaign designed to steal login credentials from gamers, particularly affecting players of its flagship title, Call of Duty. The malware, which also targets cryptocurrency wallets, has been implicated in the theft of millions of gaming account logins, raising alarms across the gaming community.

An anonymous source familiar with the investigation told TechCrunch, "People at Activision Blizzard are investigating, trying to help remove the malware, and working on identifying and remediating player accounts for anyone affected."

BleepingComputer added to the story by revealing that the infostealer malware campaign has amassed login credentials for various gaming websites, with a significant number of victims being players who use cheats or pay-to-cheat services. Reports suggest that players who had their data stolen may have fallen victim to the malware operation after downloading cheat software.

The alarm was raised by Zebleer, who is a cheat software developer for Call of Duty. He initially found out about the campaign when one of his customers had their account for the cheat software stolen. He was later notified by a Discord user, “PainCorp” to an infostealer database containing the credentials of several million gamers.

Zebleer told TechCrunch that threat actors were “targeting gamers — some who use cheats — to steal their usernames and passwords."

In response to the escalating threat, Activision has advised players to secure their accounts with two-factor authentication (2FA). Activision’s spokesperson Delaney Simmons maintained that the company’s servers "remain secure and uncompromised," and that Activision was aware of “claims that some player credentials across the broader industry could be compromised from malware from downloading or using unauthorized software.”