Home / Technology / Pirated Games Unleash Hidden Malware Threat
Pirated Games Unleash Hidden Malware Threat
7 Feb
Summary
- Malware hidden in pirated games has infected over 400,000 devices globally.
- The RenEngine loader steals passwords, cryptocurrency, and browser data.
- Antivirus detection remains low for this new, evolving threat.
A significant cyber threat is actively circulating within pirated PC games, having already compromised an estimated 400,000 devices globally. Cybersecurity researchers have identified this malware, named the RenEngine loader, as being embedded within cracked game installers for popular franchises such as Far Cry, Need for Speed, FIFA, and Assassin's Creed. These compromised game files, often downloaded from sites like dodi-repacks[.]site, appear functional but secretly install malware.
The RenEngine loader has been active since at least April of the previous year. By October, it was updated with telemetry tracking, allowing researchers to monitor its reach. The telemetry data indicates daily infections ranging from 4,000 to 10,000 victims, with a notable concentration in India, the United States, and Brazil. The malware's ultimate goal is to deliver information-stealing payloads like ARC, which targets saved browser passwords, cryptocurrency wallets, and system details.
In some instances, the RenEngine loader has also been observed distributing other potent malware, including Rhadamanthys stealer, Async RAT, and XWorm. These can lead to further data theft or enable remote hijacking of infected PCs. Currently, most antivirus engines fail to detect the initial stage of this threat, with exceptions like Avast, AVG, and Cynet. Users suspecting infection might consider system restore or OS reinstallation.
