"Fake Valorant Cheats Infect Users With RedLine Stealer on YouTube"

A malware distribution operation has been discovered on YouTube. According to security researchers in Korea who discovered the operation, it involves using Valorant cheat lures to trick gamers into installing an information stealer called RedLine Stealer. This type of abuse has been found to be popular among threat actors because it is easy to get through YouTube's content submission evaluations and create new accounts after being reported. The malicious campaign targets the Valorant gaming community with a link to an auto-aiming bot in a video description. These exploits are reportedly add-ons that allow players to quickly and precisely aim at targets in the game. Those who try to download the file linked in the video's description are sent to an anonfiles page where they are provided a RAR package with the executable "Cheat installer.exe." This program is a duplicate of RedLine Stealer, which is one of the most prevalent information-stealing malware capable of stealing credit card numbers, AutoFill forms, browser cookies, cryptocurrency wallets, and more. The stolen information gets packaged in a ZIP archive and sent to a Discord server through a WebHook API POST request. This article continues to discuss the promotion of fake Valorant cheats on YouTube to infect users with RedLine Stealer malware. 

CyberIntelMag reports "Fake Valorant Cheats Infect Users With RedLine Stealer on YouTube"