Minecraft, a titan in the gaming world, has unfortunately become a magnet for cybercriminals. A recent cybersecurity analysis from McAfee Labs has unveiled a concerning malware campaign that has already amassed over 116,000 hits. As of June 2, the report indicates that this campaign is racking up between 2,000 and 3,000 malicious hits daily. The malware, known as WeedHack, is being marketed as malware-as-a-service (MaaS), making it alarmingly accessible. Unlike many malicious tools that lurk in the shadows of the dark web, WeedHack is openly available on the internet, allowing individuals with minimal technical skills to engage in harmful activities. For a mere per month, aspiring hackers can utilize WeedHack to target and compromise victims, employing a variety of malicious tools against them.
You May Also Like
McAfee Labs has also identified a dedicated Telegram channel for WeedHack users, boasting over 850 members. Within this community, many participants appear to be teenagers and young adults who leverage the malware to engage in cyberbullying. Discussions within the channel reveal intentions to exploit the malware’s remote access features for harassment, intimidation, and surveillance of their peers.
WeedHack is spreading through YouTube and Google, report says
The report highlights that WeedHack’s distribution primarily occurs through YouTube videos that promote Minecraft mods, clients, and other third-party enhancements. However, these seemingly innocuous mods often conceal the WeedHack malware. McAfee’s findings include a screenshot from a YouTube comments section where a viewer alerts the creator about a malware warning encountered during the download process. In response, the creator dismisses the concern, assuring the user that the file is safe.
Additionally, bad actors are reportedly employing SEO poisoning tactics to elevate fake websites that masquerade as legitimate Minecraft clients. Among the legitimate clients targeted by WeedHack are:
- Meteor Client
- Radium Client
- Wurst Client
- Aristois
- LiquidBounce
- Impact Client
- Future Client
- Inertia Client
- Cornos Client
- WWE Client
- 3arthh4ck
- Salhack
- Phobos
- Gamesense
Many of these Minecraft mods and clients lack official websites, often residing on file-sharing platforms, which facilitates hackers’ manipulation of search results with counterfeit sites. McAfee advises players to remain vigilant when downloading Minecraft mods and clients, urging them to recognize potential red flags and utilize antivirus protection tools. Young players approached by individuals claiming to have compromised their systems—especially those attempting to extort them—are encouraged to seek guidance from a trusted adult. For further assistance, visiting the Internet Crime Complaint Center can provide valuable resources.
For an additional per month, attackers can access a premium tier that offers enhanced remote-access capabilities, including webcam access, keylogging, reverse shell execution, screen sharing with keyboard and mouse control, and file management features for uploading and downloading files. This stolen information can be monitored through an enterprise-level dashboard. While many malware-as-a-service options can cost hundreds of dollars monthly, WeedHack’s pricing structure makes it alarmingly accessible to anyone intent on deploying these harmful tools. McAfee’s report serves as a stark reminder that malware is not only evolving in sophistication but is also becoming increasingly available to a wider audience.
Teens are using $5 WeedHack malware to target Minecraft players
Minecraft, a titan in the gaming world, has unfortunately become a magnet for cybercriminals. A recent cybersecurity analysis from McAfee Labs has unveiled a concerning malware campaign that has already amassed over 116,000 hits. As of June 2, the report indicates that this campaign is racking up between 2,000 and 3,000 malicious hits daily. The malware, known as WeedHack, is being marketed as malware-as-a-service (MaaS), making it alarmingly accessible. Unlike many malicious tools that lurk in the shadows of the dark web, WeedHack is openly available on the internet, allowing individuals with minimal technical skills to engage in harmful activities. For a mere per month, aspiring hackers can utilize WeedHack to target and compromise victims, employing a variety of malicious tools against them.
You May Also Like
McAfee Labs has also identified a dedicated Telegram channel for WeedHack users, boasting over 850 members. Within this community, many participants appear to be teenagers and young adults who leverage the malware to engage in cyberbullying. Discussions within the channel reveal intentions to exploit the malware’s remote access features for harassment, intimidation, and surveillance of their peers.
WeedHack is spreading through YouTube and Google, report says
The report highlights that WeedHack’s distribution primarily occurs through YouTube videos that promote Minecraft mods, clients, and other third-party enhancements. However, these seemingly innocuous mods often conceal the WeedHack malware. McAfee’s findings include a screenshot from a YouTube comments section where a viewer alerts the creator about a malware warning encountered during the download process. In response, the creator dismisses the concern, assuring the user that the file is safe.
Additionally, bad actors are reportedly employing SEO poisoning tactics to elevate fake websites that masquerade as legitimate Minecraft clients. Among the legitimate clients targeted by WeedHack are:
Many of these Minecraft mods and clients lack official websites, often residing on file-sharing platforms, which facilitates hackers’ manipulation of search results with counterfeit sites. McAfee advises players to remain vigilant when downloading Minecraft mods and clients, urging them to recognize potential red flags and utilize antivirus protection tools. Young players approached by individuals claiming to have compromised their systems—especially those attempting to extort them—are encouraged to seek guidance from a trusted adult. For further assistance, visiting the Internet Crime Complaint Center can provide valuable resources.
For an additional per month, attackers can access a premium tier that offers enhanced remote-access capabilities, including webcam access, keylogging, reverse shell execution, screen sharing with keyboard and mouse control, and file management features for uploading and downloading files. This stolen information can be monitored through an enterprise-level dashboard. While many malware-as-a-service options can cost hundreds of dollars monthly, WeedHack’s pricing structure makes it alarmingly accessible to anyone intent on deploying these harmful tools. McAfee’s report serves as a stark reminder that malware is not only evolving in sophistication but is also becoming increasingly available to a wider audience.