Squid Game is still a hot topic in various parts of the world. Along with the popularity of the drama series, there is a threat that lurks.
Cybercriminals take advantage of this rising trend by creating fraudulent schemes that can cost users a lot of money. Squid Game itself is the most watched series and broke a record on Netflix to more than 111 million who watched it.
From this September to October period, Kaspersky experts found several dozen different malicious files on the web, impersonating the fake Squid Game alias.
In a number of cases analyzed, Kaspersky found a Trojan downloader that could install malicious programs. Apart from that, other Trojans and adware were also found.
The antivirus company revealed that the mode of cybercriminals is that the victim is shown an animated version of the first game in the series and simultaneously a Trojan is launched without being seen, so that it can steal data from various users' browsers and send it back to the attacker's server.
A shortcut is also created in one of the folders, which can be used to launch the Trojan every time the system starts.
Kaspersky discovered a mobile malware exploiting the fame of Squid Game. It is not the game that is obtained, but the victim actually downloads the trojan.
Examples of fake sites taking advantage of the Squid Game trend. Photo: Kaspersky
When the app is launched on the device, it asks the control server to complete its task. This could for example be, opening a tab in the browser or sending an SMS to the number received from the control server.
This Trojan is distributed in unofficial app stores and various portals under the guise of popular apps, games, books and more.
Kaspersky also discovered a fake shop selling Squid Game costumes that appeared ahead of Halloween. But when users shop, it will lose their money and not get the desired item.
"Squid Game becoming a new attraction is only a matter of time. As it grows rapidly, we observe many phishing pages that offer players costumes like in the series, to invite them to play the game online," said Kaspersky Security Expert, Anton V Ivanov in a press release, Friday. (29/10/2021).
"After that, the target ends up losing data, money, and malware installed on their device. It is very important for users to check the authenticity of the site when looking for sources to stream or buy merchandise," he continued.
Tips to Avoid Squid Game Scams
To avoid becoming a victim of malicious programs and online scams, Kaspersky advises users to:
Always check the authenticity of websites before entering personal data and only use official websites to watch or download movies. Double check URL format and spelling
company name.
Pay attention to the file extensions you download - video files will never have an .exe or .msi extension.
Use a reliable security solution, such as Kaspersky Security Cloud, which identifies malicious attachments and blocks phishing sites.
Avoid links that promise early viewing of content, and if in doubt about the authenticity of the content, contact your entertainment provider.