Brazilian LofyGang Resurfaces After Three Years With Minecraft LofyStealer Campaign
Summary
The Brazilian LofyGang has returned after a three-year absence, launching a campaign targeting Minecraft players with a new malware named LofyStealer. This stealer disguises itself as a Minecraft hack called 'Slinky,' using the official game icon to trick users into voluntary execution.
IFF Assessment
The resurgence of a known threat actor with new malware designed to steal user credentials and in-game items is detrimental to defenders and their users.
Defender Context
This campaign highlights the persistent threat of credential stuffing and account takeovers, particularly targeting online gaming communities. Defenders should educate users about the risks of downloading unofficial game modifications and emphasize the importance of strong, unique passwords and multi-factor authentication for gaming accounts.