Wednesday, June 29, 2022
  • Hype
  • Murai
  • Lipstiq
  • Diva
  • Varnam
  • Moviedash
  • Autofreaks
Lowyat.NET
  • News
    • Lifestyle
    • Computing
    • Hardware
    • Internet
    • Rumours & Leaks
    • Software
  • Forums
    • Kopitiam
    • Tradezone
    • Property Talk
    • Finance & Business
    • Fast and Furious
  • Gaming
    • PC Gaming
    • Console
    • Esports
  • Mobile
    • Apps
    • OS
    • Tablets
    • Phones
    • Telco
      • Celcom
      • DiGi
      • Maxis
      • Tune Talk
      • U Mobile
      • Buzzme
  • Pricelists
    • Hardware
      • Compu-zone
      • Viewnet
      • Thundermatch
      • Sri Computers
    • Notebooks
      • Compu-zone
    • Smartphones
      • Thundermatch
  • More
    • Automotive Tech
    • Drone
    • Enterprise
    • Entertainment
    • Fashion
    • E-Hailing
    • Wearables
No Result
View All Result
Lowyat.NET
  • News
    • Lifestyle
    • Computing
    • Hardware
    • Internet
    • Rumours & Leaks
    • Software
  • Forums
    • Kopitiam
    • Tradezone
    • Property Talk
    • Finance & Business
    • Fast and Furious
  • Gaming
    • PC Gaming
    • Console
    • Esports
  • Mobile
    • Apps
    • OS
    • Tablets
    • Phones
    • Telco
      • Celcom
      • DiGi
      • Maxis
      • Tune Talk
      • U Mobile
      • Buzzme
  • Pricelists
    • Hardware
      • Compu-zone
      • Viewnet
      • Thundermatch
      • Sri Computers
    • Notebooks
      • Compu-zone
    • Smartphones
      • Thundermatch
  • More
    • Automotive Tech
    • Drone
    • Enterprise
    • Entertainment
    • Fashion
    • E-Hailing
    • Wearables
No Result
View All Result
Lowyat.NET
No Result
View All Result
Home Security

Malware Lurks In Fake Pixelmon NFT Site

Then proceeds to steal passwords.

by Ian Chee
May 19, 2022
Fake Pixelmon site

Source: BleepingComputer

10
SHARES
Share on FacebookShare on Twitter

NFTs are not exactly something that is popular with gamers. This is especially when publishers push them onto gamers for no discernible reason. One example is Ubisoft’s Quartz being pushed onto Ghost Recon: Breakpoint. If you’re a gamer and you needed another reason to avoid NFTs, malware should be a good enough reason.

BleepingComputer reports that there’s a fake Pixelmon NFT site out there that baits token enthusiasts with freebies. But once victims take the bait, their PC then gets infected with malware that steals passwords to their cryptocurrency wallets.

But first, some background information. Pixelmon is an NFT project which involves making a metaverse game centred around collecting, training and battling with the eponymous pixelated creature pets. Not to be confused with a Minecraft mod with a similar name.

"Setup.zip" -> "Setup.lnk": 87211a5e4ca82a23b732305796446c53f3ba5cecbdf6ae46f687a164530529f2
Next stage: https://pixelmon[.]pw/system32.hta
🤔 pic.twitter.com/2HoeeqqiNi

— MalwareHunterTeam (@malwrhunterteam) May 12, 2022

ADVERTISEMENT

Going back to the malware, the people behind it made a fake website that looks very similar to the real Pixelmon website. Likely making use of its apparent popularity, the fake site claims to offer a demo of the game. There’s even a MacOS option that’s coming “soon” to add to the air of legitimacy.

Hitting the download button instead results in a reportedly broken file named Installer.zip which wasn’t distributing malware. That being said, MalwareHunterTeam found other malicious files being distributed by the site, including one setup.zip, which contains another file called setup.lnk. That last one runs the command to download Vidar, a password-stealing malware that scrubs browsers and apps, as well as search for files that match specific names.

Since this malware uses an NFT project as its front, it’s likely that the malware is made to look for and steal passwords for cryptocurrency wallets. Which is another reason to always be careful about clicking suspicious links or downloading suspicious files. While there haven’t been any reports of victims among Pixelmon aficionados yet, the same can’t be said about the Bored Apes Yacht Club.

(Source: BleepingComputer via TechRadar)

Tags: FakeMalwareNFTPixelmonVidar
Updated 3:00 pm, Thu, 19 May 22
Back to top
Share4Tweet3SendShare

ADVERTISEMENT

RELATED ARTICLES

Luno Launches New Campaign To Encourage Wider Adoption
Cryptocurrency

Luno Launches New Campaign To Encourage Wider Adoption

by John Law
June 28, 2022

Luno launched its latest campaign, “Move with Luno” to promote personal finance journeys as well as achieve "financial fitness". The...

Read more
NC4 Latest Alert Reveals An Active Cyberattack Campaign Against Malaysian Websites
Security

PingPull Is A New Trojan That Targets Telecom, Finance, Government Entities

by Ian Chee
June 23, 2022

For cybercriminal groups targeting the average user, it is usually enough that you keep your wits about you and don't...

Read more
Luno Chainlink Uniswap Cryptocurrency
Cryptocurrency

Luno Adds Chainlink and Uniswap Cryptocurrencies To Its Exchange

by Heirul Kamel
June 21, 2022

Digital asset exchange Luno today announced that it has added two new cryptocurrency offerings to its investment portfolio, as promised...

Read more
tag heuer connected calibre e4 smartwatch nft support
Smartwatches

TAG Heuer Updates Its Connected Calibre E4 Smartwatch To Feature NFT Support

by Heirul Kamel
June 20, 2022

Let's say you just bought your umpteenth ape from Bored Ape Yacht Club (BAYC). But like the rest of your...

Read more
Load More
No Result
View All Result

TRENDING TODAY

  1. 1
    E-Hailing

    Gojek Confirms It Will Not Be Entering Malaysia

  2. 2
    News

    Employees Can Apply For Flexible Working Arrangements Starting 1 September

  3. 3
    News

    Employees In Klang Valley Spend 44 Hours In Traffic Jams Every Month

Consumer Tech News & Reviews Malaysia

NETWORK

  • Hype
  • Murai
  • Lipstiq
  • Diva
  • Varnam
  • Moviedash
  • Autofreaks

ABOUT

  • Advertise
  • Careers
  • Privacy Statement
  • Contact Us
  • Editorial Policy
  • Terms & Conditions

©2022 LOWYAT MEDIA, LLC. ALL RIGHTS RESERVED.

No Result
View All Result
  • News
    • Lifestyle
    • Computing
    • Hardware
    • Internet
    • Rumours & Leaks
    • Software
  • Forums
    • Kopitiam
    • Tradezone
    • Property Talk
    • Finance & Business
    • Fast and Furious
  • Gaming
    • PC Gaming
    • Console
    • Esports
  • Mobile
    • Apps
    • OS
    • Tablets
    • Phones
    • Telco
      • Celcom
      • DiGi
      • Maxis
      • Tune Talk
      • U Mobile
      • Buzzme
  • Pricelists
    • Hardware
      • Compu-zone
      • Viewnet
      • Thundermatch
      • Sri Computers
    • Notebooks
      • Compu-zone
    • Smartphones
      • Thundermatch
  • More
    • Automotive Tech
    • Drone
    • Enterprise
    • Entertainment
    • Fashion
    • E-Hailing
    • Wearables

©2022 LOWYAT MEDIA, LLC. ALL RIGHTS RESERVED.

We use cookies to improve your experience. Learn More.