Hackers are using Ice Breaker malware (malware) to attack the gaming and betting industry.
According to MakeUseOf, hackers are targeting online gaming and betting platforms with Ice Breaker malware and non-technical attack methods, this malicious campaign is known to have started since September 2022.
On February 1, 2022, Israeli cybersecurity company Security Joes shared a post regarding the Ice Breaker malware and its being instrumental in a months-long attack campaign.
The attack took place shortly before the ICE 2023 event, which gathered thousands of game enthusiasts from February 7 to February 9. It is worth mentioning that the malware took its name from the event itself in order to work.
The attack uses a non-technical method (social network phishing) where bad actors impersonate customers to deploy backdoors to Ice Breaker.
In a post by Security Joes, Ice Breaker (dubbed “Ice Breaker APT”) is described as an extremely mischievous piece of malware that is capable of attacking platforms using backdoors. But the prerequisite for the malware to work is to trick the victim into opening the malicious LNK or ZIP file.
After an attacker successfully deploys a backdoor for Ice Breaker on a victim’s system, they can take screenshots, steal credentials, cookies, and arbitrary files, and customize the plugin to extend it. attack, run a custom VBS script, and control the computer remotely.
Currently, Security Joes has prevented a number of Ice Breaker attacks and is continuing to investigate this malicious campaign to identify the people behind it and put an end to it so that ICE 2023 will take place safely.
