Observing the rise of play-to-earn games, some threat actors have created a whole game called “ Cthulhu World ,” which they had been promoting on Twitter directly to targeted people.
Asking potential victims to test their game, players are directed to download a code for running it on their systems. And when done, they’re all robbed by emptying their connected cryptocurrency wallets in the system.
A Whole Game For Making Players Trust
Play-to-earn games are becoming so popular lately since they offer freebies in terms of cryptocurrencies or NFTs for playing such games. And this opportunity is perfectly cashed by unknown threat actors, who are seen draining victims’ cryptocurrency wallets in the name of a new game.
As spotted by a cybersecurity researcher named iamdeadlyz , the campaign is all about a fake game called “ Cthulhu World “. Threat actors start by sending direct messages to potential players on Twitter, asking them to test their new game in return for Ethereum rewards.
1/ Cthulhu World CWorldP2E (id: 1559535183753367552) /cthulhu-world.com #RaccoonStealer , #AsyncRAT , & #RedLineStealer pieces of malware in one fake P2E game project. Armed with several alt accounts for setting the bait… pic.twitter.com/6u4sSo9CGK — iamdeadlyz.pcc.eth | YGG (@Iamdeadlyz) August 25, 2022
