New malware Arcane targets users in Russia, Belarus, Kazakhstan

A new malware named Arcane is stealing personal information from users who download game cheats. The malware can access sensitive data, including VPN credentials, gaming accounts, messaging apps, and information in web browsers. Experts from Kaspersky have traced this malware's activity back to November 2024. They state that the Arcane malware does not share any code with the older Arcane Stealer V. Most attacks are happening in Russia, Belarus, and Kazakhstan. This trend is unusual because most hackers prefer not to target their own countries. Arcane spreads through YouTube videos that promote game cheats. Users are tricked into downloading a password-protected file that contains a malicious script. This script then downloads additional harmful files and makes changes to the security settings on Windows computers. The malware captures a wide range of data. This includes details about the computer's hardware and software, as well as account information from various applications. Arcane can also take screenshots and retrieve saved Wi-Fi passwords. Kaspersky warns that becoming infected with this type of malware can lead to serious problems like financial fraud and extortion. Recovering from an attack can take a lot of time, as users need to change all their passwords and check for any compromises. Therefore, experts advise avoiding downloads of unauthorized game cheats and tools, as the risks are too significant.