Video game mods are spreading new ‘Stealka’ crypto infostealer: Kaspersky

cointelegraphPublished on 2025-12-22Last updated on 2025-12-22

Abstract

A new malware called "Stealka" is targeting cryptocurrency wallets and browser extensions by disguising itself as video game cheats, mods, and software cracks, according to Kaspersky. The infostealer, discovered in November, is distributed through legitimate platforms like GitHub and Google Sites, and sometimes via fake professional-looking websites. It primarily targets Chromium and Gecko-based browsers—including Chrome, Firefox, and Edge—and steals autofill data, login credentials, and payment details. It also specifically targets 115 browser extensions related to crypto wallets, 2FA services, and password managers, including Binance, MetaMask, Trust Wallet, and Coinbase. Kaspersky advises using reliable antivirus software, avoiding pirated software and unofficial mods, and refraining from storing passwords in browsers.

New malware has been discovered that targets crypto wallets and browser extensions while disguising itself as game cheats and mods, says cybersecurity firm Kaspersky.

Kaspersky reported on Thursday that it had uncovered a new infostealer dubbed “Stealka,” which targets Microsoft Windows user data.

Attackers have used the malware, which was discovered in November, to hijack accounts, steal cryptocurrency, and install crypto miners on their victims’ computers while masquerading as video game cracks, cheats, and mods.

The malicious software has been distributed through legitimate platforms like GitHub, SourceForge, and Google Sites, and disguised as game mods, especially for Roblox, and software cracks for applications such as Microsoft Visio.

Sometimes, attackers go a step further, possibly using artificial intelligence tools, and creating entire fake websites that look “quite professional,” said Kaspersky researcher Artem Ushkov.

*A fake website pretending to offer Roblox scripts, Source: Kaspersky*

Crypto wallets and extensions targeted

Ushkov noted that Stealka has a fairly “extensive arsenal of capabilities,” but is particularly dangerous because its prime target is data from browsers built on the Chromium and Gecko engines.

This puts over 100 different browsers at risk, including popular ones such as Chrome, Firefox, Opera, Yandex, Edge, Brave, and many others.

Related: Hackers are exploiting a JavaScript library to plant crypto drainers

Its primary targets are autofill data, such as sign-in credentials, addresses, and payment card details, but it also targets the settings and databases of 115 browser extensions for crypto wallets, password managers, and 2FA (two-factor authentication) services.

Some of the 80 crypto wallets targeted include Binance, Coinbase, Crypto.com, SafePal, Trust Wallet, MetaMask, Ton, Phantom, Nexus, and Exodus.

Kaspersky also said the messaging apps, including Discord, Telegram, Unigram, Pidgin, and Tox, were also at risk, as were email clients, password managers, gaming clients, and even VPN applications.

Avoid pirated software and game mods

To stay protected, Kaspersky recommended using reliable antivirus software and password managers to avoid storing passwords in browsers. It also cautioned against using pirated software and unofficial game mods.

Cloudflare reported last week that more than 5% of all emails sent worldwide contain malicious content, and more than half of those contained a phishing link, while a quarter of all HTML attachments were found to be malicious.

Magazine: Big questions: Would Bitcoin survive a 10-year power outage?

The Era Has Arrived Where Human Writers Must Prove They Are Not Machines

The article describes an era where AI-generated content is flooding the market, forcing human authors to prove they are not machines. It begins with the example of dozens of AI-written, error-ridden biographies of Henry Kissinger appearing on Amazon within hours of his death, a pattern repeated for other deceased celebrities and even living experts who find fraudulent books under their names. This spam content has exploded, with monthly new book releases on platforms like Amazon reaching 300,000 by late 2025. The issue spans genres, from suspiciously high proportions of AI-written teen romance and self-help books to dangerous, AI-generated foraging guides containing lethal advice. The platforms' automated review systems, designed to catch plagiarism and banned words, are ill-equipped to detect AI-generated text that avoids these pitfalls while being nonsensical or fraudulent. The problem has infiltrated traditional publishing. A major publisher, Hachette, had to recall a bestselling horror novel after AI detection tools suggested 78% of its content was machine-generated. An acclaimed European philosophy book was later revealed to be entirely written by AI under a fake author persona. In response, authors are fighting back. At the 2026 London Book Fair, 10,000 writers published a blank book titled "Don't Steal This Book" containing only their signatures—using emptiness as a protest weapon in an age of AI overproduction. Initiatives like the "Human Author Certification" program have emerged, ironically placing the burden on humans to prove their work is not machine-made. The article warns of a vicious cycle: AI-generated low-quality books pollute the data used to train future AI models, leading to "model collapse" and an ever-worsening flood of digital waste, eroding trust in publishing and devaluing human creativity.

marsbit15m ago

The Era Has Arrived Where Human Writers Must Prove They Are Not Machines

marsbit15m ago

Strategy CEO Highlights Scenarios Where Company Would Sell Bitcoin — Report

Strategy CEO Phong Le outlined potential scenarios for the company to sell portions of its massive Bitcoin holdings, a departure from its "Never Sell" philosophy. In a CNBC interview, Le stated sales could occur to finance dividend payments for its Perpetual Preferred Stock if doing so increases shareholder value, defined as a rise in "Bitcoin per share." He emphasized a data-driven approach, prioritizing math over ideology. Other reasons include when the company's book value is below market value or to capture tax benefits. As the largest corporate holder with 818,334 BTC (~$65 billion), Strategy has significant annual dividend obligations (~$1.5 billion). Le believes the Bitcoin market's high liquidity (~$60B daily volume) can absorb such sales without major price impact. Bitcoin currently trades around $80,840.

bitcoinist26m ago

Strategy CEO Highlights Scenarios Where Company Would Sell Bitcoin — Report

bitcoinist26m ago

Crypto Funds See Six Consecutive Weeks of Net Inflows, CLARITY Act Drives $858 Million Influx

Global cryptocurrency investment products recorded a net inflow of $857.9 million last week, marking the sixth consecutive week of positive flows and the largest single-week inflow since April 24, according to CoinShares' latest report. The primary catalyst was legislative progress on the U.S. CLARITY Act, specifically the final compromise text for stablecoin yield provisions, alongside Bitcoin's price breaking above $80,000. U.S.-listed products dominated with $776.6 million in inflows, a significant jump from the prior week's $47.5 million. European markets also saw increased participation. Bitcoin products led with $706.1 million in inflows, while short-Bitcoin products experienced their largest weekly outflow of 2026, indicating unwinding bearish positions. Major altcoins like Ethereum, Solana, and XRP all saw renewed positive flows, with Ethereum reversing its prior week's outflow to attract $77.1 million. Total assets under management (AUM) climbed to $160 billion.

marsbit29m ago

Crypto Funds See Six Consecutive Weeks of Net Inflows, CLARITY Act Drives $858 Million Influx

marsbit29m ago

Silicon Valley Wang Chuan: How Can You Not Feel Anxious When the Neighbor Lao Wang Earned 30x by Investing in Storage Stocks?

The author explores anxiety, attributing it to the amygdala's stress response, and suggests writing down worries to shift control to the rational prefrontal cortex, easing anxiety more effectively than mere reassurance. The piece then examines a source of financial anxiety in May 2026: a 150% surge in the Philadelphia Semiconductor Index, with storage stock SNDK skyrocketing 38x. The author analyzes the underlying logic behind this boom, tracing it to soaring valuations of AI startups like Anthropic (Anth). Anth's reported $400 billion ARR is scrutinized, revealing that cumulative revenue since founding is only about $108 billion, with the company still losing billions monthly and relying on continuous funding (having raised $723 billion). The author contrasts Anth's $1+ trillion valuation speculation with Berkshire Hathaway's fundamentals ($3.7 trillion revenue, $669 billion profit, $4 trillion cash, $1 trillion market cap), questioning the belief that a loss-making, funding-dependent startup could be worth more than the established giant. The narrative concludes by linking the massive valuations of Anth and OpenAI to a surge in AI industry capital expenditure (capex), which in turn fueled the storage sector's prosperity, setting the stage for a further discussion.

marsbit41m ago

Silicon Valley Wang Chuan: How Can You Not Feel Anxious When the Neighbor Lao Wang Earned 30x by Investing in Storage Stocks?

marsbit41m ago

The King of Blind Date Attire in Korea: How SK Hynix Made a Comeback Against Samsung?

In South Korea's dating scene, SK Hynix employees are now highly sought after, a status shift fueled by the company's astronomical profits and employee bonuses, projected to reach up to 6.1 million RMB per person by 2027. This marks a dramatic reversal for the long-time second-place player in memory semiconductors, which has now surpassed its rival Samsung in annual operating profit. The turnaround story began in 2008 when a struggling Hynix, emerging from bankruptcy restructuring, took a risky bet by agreeing to develop High Bandwidth Memory (HBM) with AMD. At the time, HBM had no clear market beyond high-end graphics cards and was a costly, complex technology. Major players like Samsung, pursuing its own HMC technology, declined. For Hynix, with only memory as its core business, it was a gamble born of necessity. The pivotal moment came in 2012 when SK Group Chairman Chey Tae-won acquired Hynix. Defying industry downturns, he invested heavily in R&D and fabrication, sustaining the HBM project through over a decade of commercial uncertainty and internal challenges. A key break occurred around 2016-2017 when Samsung faced production issues supplying HBM2 for Google's TPU, allowing SK Hynix to gain a crucial foothold in the data center market. The AI explosion post-ChatGPT in 2022 was the catalyst, turning HBM into a critical bottleneck for AI accelerators like NVIDIA's GPUs. By 2025, SK Hynix captured 62% of the global HBM market, leaving Samsung at 17%. For the first time, its annual operating profit exceeded Samsung's. Analysts point to the "innovator's dilemma" to explain Samsung's miss: its vast, successful business portfolio made it risk-averse, preventing an all-in bet on the initially niche HBM technology. In contrast, SK Hynix, as a challenger with its back against the wall, had no choice but to commit fully. The story highlights how Korea's chaebol system allows for ultra-long-term bets beyond quarterly pressures. However, SK Hynix's lead isn't guaranteed. Samsung is aggressively catching up on HBM4, and challenges like customer concentration (heavy reliance on NVIDIA) and technical hurdles in advanced packaging remain. The narrative underscores a market truth: the greatest alpha often comes from betting on uncertain, long-term directions others dismiss, much like HBM in 2008.

marsbit55m ago

The King of Blind Date Attire in Korea: How SK Hynix Made a Comeback Against Samsung?

marsbit55m ago

Trading

Spot

Futures