Two game installers from internet platform Garena have been discovered to be infected with malware, potentially infecting users. League of Legends and Path of Exile were found to contain a remote access Trojan known as PlugX, which would allow hackers to steal information from infected systems.
PlugX is malware that allows hackers to gain consistent access to infected systems. This would allow them to install other malicious software, log keystrokes, and pretty much do anything they want. The malware also conceals its presence by installing the legitimate files over the infected versions, making it harder to detect.
Most of the victims were from Taiwan, although users from Singapore, Hong Kong, Malaysia, and Thailand were also infected. It appears that the attack may have been targeted at these Taiwanese users, but may have caught other unsuspecting gamers as collateral damage.
Garena had published a post describing the attack which was first discovered last month, although many users went unaware of the incident. While the Garena installer and update files have been fixed, users who updated their games recently should take precautions against malware infections. Passwords should be changed and a full system scan should be done to ensure that the trojan was not installed.
[Source: Trend Micro; via Ars Technica]
