Malware , Threat Intelligence Novel Minecraft-targeting stealer tapped by reemergent LofyGang April 30, 2026 Share By SC Staff (Adobe Stock) Brazilian threat group LofyGang has resurfaced to compromise Minecraft players with the novel LofyStealer malware, also known as GrabBot, more than three years after its last attack campaign, The Hacker News reports. Intrusions commenced with the deployment of the Minecraft hack dubbed 'Slinky', which utilized the official game icon for legitimacy, to run a JavaScript loader that led to the injection of LofyStealer, according to findings from Brazilian cybersecurity firm ZenoX. LofyStealer then proceeds to harvest and exfiltrate passwords, tokens, cookies, cards, and International Bank Account Numbers across several web browsers, including Google Chrome, Mozilla Firefox, Brave, and Microsoft Edge. While LofyGang has previously leveraged the JavaScript supply chain as its initial attack vector, its latest campaign indicates a transition towards a malware-as-a-service model, said ZenoX researchers. Such findings follow a recent Acronis report detailing the use of fake game cheats on GitHub and Reddit to spread the Vidar 2.0 information-stealing malware . SC Staff Related Malware North Korean hackers use AI-generated video calls to target crypto firms SC Staff April 29, 2026 The attackers create convincing fake Zoom video call websites using AI-generated headshots and semi-animated videos. Malware Novel multi-stage malware campaign stealthily targets Pakistan SC Staff April 29, 2026 More refined obfuscation tactics have been leveraged in a new multi-stage malware campaign targeted at the employees of Pakistan's Punjab Safe Cities Authority and Punjab Police Integrated Command, Control & Communication Centre, GBHackers News reports. Malware Vidar infostealer evolves, uses image files for stealthy attacks SC Staff April 28, 2026 The latest Vidar campaign leverages social engineering, exploiting a recent Claude Code leak by setting up fake GitHub repositories. Get daily email updates SC Media's daily must-read of the most current and pressing daily news Business Email By clicking the Subscribe button below, you agree to SC Media Terms of Use and Privacy Policy . Subscribe Related Terms Corruption DNS Spoofing Darknet Deauthentication Attack Dictionary Attack Domain Hijacking Drive-by Download DumpSec Google Hacking Password Cracking You can skip this ad in 5 seconds