Summary: A cyber campaign named StaryDobry targeted users globally, distributing the XMRig cryptominer through trojanized versions of popular games shared on torrent sites during the holiday season. The sophisticated malware incorporated multiple evasion techniques to prevent detection and primarily affected individual users, with notable cases in Russia, Brazil, Germany, Belarus, and Kazakhstan. Attribution of the attack remains uncertain, suggesting involvement by a Russian-speaking actor without clear ties to previous criminals.
Affected: Individual users and corporate environments globally
Keypoints :
- StaryDobry campaign launched on December 31, utilizing increased torrent traffic.
- MALWARE distributed through cracked installers of popular games, evading detection with an advanced infection chain.
- Primarily affected users in Russia, Brazil, Germany, Belarus, and Kazakhstan, with potential links to a Russian-speaking actor.
Source: https://securityonline.info/cracked-games-cryptojacked-pcs-the-starydobry-campaign/