Researchers attribute the increase in attack success rates in 2024 to two main factors: cybercriminals’ strategies adapting to cultural trends and the increasing use of AI to automate and personalize phishing attacks. Advanced phishing kits, including pre-made phishing page templates, are also available on the dark web, making it easier to create convincing phishing pages.
According to the latest statistics provided by Kaspersky, a 30% increase was observed in the number of unique users of online games aimed at young players, targeted by cybercriminals in the first six months of 2024, compared to the second half of 2023. Kaspersky researchers analyzed a variety of risks associated with video games aimed at children, revealing that more than 132,000 young users were targeted by such attacks.
The study focused on the period from July 1, 2023 to June 30, 2024, during which Kaspersky’s cybersecurity solutions recorded more than 6.6 million attempted attacks exploiting game titles that are particularly popular with children. Among the 18 games studied, the threats were mainly associated with brands such as Minecraft, Roblox and Among Us. The reported data shows that Minecraft, due to its high popularity and the propensity of its users to use “cheats” or mods, was the most targeted, resulting in more than 3 million attempted attacks during the period examined.
Researchers attribute the increase in successful attacks in 2024 to two major factors. First, cybercriminals, by staying on top of trends, are developing more sophisticated strategies that take advantage of cultural events and other events to make their plans less predictable. Second, the increasing use of artificial intelligence is enabling more automated and personalized phishing attacks, increasing their effectiveness. At the same time, the dark web is offering sophisticated phishing kits, including templates for pages created using automated tools, making it easier to create pages that mimic well-known gaming platforms.
Scams exploiting young people’s enthusiasm for video games
Among the most widespread scams, a common tactic is to exploit in-game items known as “skins,” which provide cosmetic enhancements to players’ characters. Kaspersky identified a scam that leverages popular brands, such as Valorant, by combining this reference with the name of influential YouTuber Mr. Beast. Here, young players are lured into providing their usernames and passwords under the pretense of receiving a special skin.
Another method involves promising in-game rewards in exchange for personal information. In one case involving Pokémon GO, for example, players are tricked into entering their usernames, followed by a fake verification test. After completing the form, victims are directed to a fraudulent website, where the real scam unfolds, exploiting players’ desire for rewards through false promises of winnings or deceptive downloads.
Kaspersky security expert Vasily M. Kolesnikov emphasizes the urgency of these findings: “Our research results clearly demonstrate that attacks targeting young people are playing an increasingly central role in cybercriminal activity. It is therefore imperative to raise awareness among young people about cybersecurity and implement reliable solutions that enhance their online security. By encouraging them to exercise discernment and take a responsible approach to their online activities, we can help create a safer and more beneficial digital environment for this generation of digital natives.”
Related News :