The latest report by Malwarebytes Labs revealed that a new malware was hidden as a "cheat tool", in which Fortnite Gamers are considered the most affected. Malware presumably has the ability to not only steal users' Bitcoins but also personal data.
The report, created by the Malware analyst of the team, Christopher Boyd, said that the disguise was removed during the search for YouTube videos, offering "subscriptions", which were deemed "free" for Android users.
Several videos found on YouTube have promoted the notion of "free passes" and tricks. According to the shared image, investors and players should watch videos like "* Fortnite Aimbot *" and "New Season 6 Fortnite Hack Cheat Free Download" to name less. The report also revealed that a video was removed, however, did so only after around 120,000 views.
The whole process for tracing malware was presumably not that simple. It started by displaying YouTube videos, inviting users to a dubbed page, "Sub2Unlock", which asked users to subscribe to a page and, finally, to take them to another website, "bt-fortnite-cheats (dot) tk" . The above site claims to offer the necessary cheat tools, however, they are not "cheat" that are downloaded, but the malware itself!
At the time of writing this article, it was announced that there were 1,207 downloads. This means that since then many people have been attacked: the theft has certainly happened.
Based on the claims made at the time of the malware download, "performs some basic enumerations on the specific details of the infected computer". A further analysis found that the type of data that was stolen includes "browser session information, cookies, Bitcoin portfolios and even Steam sessions".
In addition to malware, users would automatically download a "readme file", which could cause players to conclude a deal by indicating the price of cheats as "$ 80 bitcoins", as they are interested in buying. To those who express interest, it seems that a telegram has been offered for further discussion.
Of all the scams, this is far more intense, as players are less likely to capture malware in action. This shows that anything advertised as "free" should be thought of, since there is always something suspicious about these offers.
To read the report in full, see: blog.malwarebytes.com/cybercrime/2018/10/fortnite-gamers-targeted-by-data-theft-malware/