Gaming has become a significant part of our lives. With the rise of online gaming, the risk of online threats has increased manifold. Cybercriminals are always on the lookout for vulnerabilities to exploit in the gaming community. It is vital that gamers take the necessary steps to protect themselves from these threats. In this blog post, we will discuss the different types of online threats and the measures one can take to stay safe while online gaming.
Addressing in-game threats
Beyond account security, gamers face threats within the virtual gaming environment itself. In-game scams, such as fraudulent offers for virtual currency or rare items, are prevalent. According to a study conducted by Trend Micro, 37% of gamers have encountered in-game scams. Developers and gaming platforms should implement stringent fraud detection mechanisms and provide clear guidelines to educate gamers about the risks associated with in-game transactions. Encouraging gamers to report suspicious activities and fostering a community that promotes awareness and support can further mitigate in-game threats.
According to a report from Kaspersky experts, an analysis of threats related to popular online games for children aged three to 16 revealed alarming statistics. Between January 2022 and December 2022, Kaspersky detected over 7 million attacks, marking a significant increase compared to the 4.5 million attack attempts in 2021—a staggering 57% rise. In 2022, approximately 232,735 gamers encountered nearly 40,000 files, including disguised malware and potentially unwanted applications that posed as popular children’s games. These attacks encompass a range of tactics, from phishing schemes and the distribution of malware to account hijacking and in-game scams.
ESET mentioned some prime examples of cyberattacks and security breaches involving video game companies including the following:
1. Activation Blizzard:
One of the most-hacked video game companies is Activision Blizzard, the publisher of Overwatch, World of Warcraft, and Call of Duty. In 2022, there were at least two major DDoS attacks on Activision Blizzard, both disrupting servers and preventing people from playing. The first attack targeted World of Warcraft servers, while a more recent attack later in the year disrupted online services for four major games.
2. Nintendo:
In 2020, Nintendo fell victim to a security breach resulting in the compromise of approximately 300,000 accounts. During the breach, hackers obtained sufficient account owner information to engage in fraudulent activities. This included unauthorized utilization of account owners’ funds for purchasing in-game currency and accessing other payment services associated with the Nintendo system. In response, Nintendo took measures such as denying reimbursement for unauthorized transactions and strongly advising all users to enhance their account security by updating passwords and implementing two-factor authentication.
3. Riot Games:
Over the years, Riot Games has faced numerous Distributed Denial of Service (DDoS) attacks that have resulted in server disruptions for their widely popular online game, League of Legends, much to the frustration of its players. Recently, the company experienced yet another DDoS attack specifically targeting the team-based competitive tournament mode of League of Legends, known as Clash. The Clash servers were significantly impacted in January 2021, leading to the cancellation of scheduled tournament games and the issuance of ticket refunds
Such incidents highlight the urgency for robust cybersecurity measures to safeguard gamers’ sensitive data and overall gaming experience.
Read more: Secure online gaming for all ages
Securing gaming platforms
Game developers and platform operators bear the responsibility of providing secure gaming environments for their users. Regular security audits, vulnerability testing, and patch management are crucial in preventing potential breaches. According to a research update in CBS News, “A security vulnerability in Fortnite, the online game with more than 200 million users, exposed players to being hacked and even secretly recorded during play.” Further elaborating on the report, it said “The hackers took advantage of an unsecured web page from 2004 created by Fortnite’s developer, Epic Games. They used the old webpage to send phishing links to Fortnite users that appeared to be coming from Epic. If users clicked the link, hackers could gain full access to their accounts even without login information.” This serves as a reminder of the importance of timely security updates.
Read more: Does a VPN affect your ping when you’re gaming online
Protecting gamer accounts
Ensuring account security is of utmost importance in the gaming industry, as compromised accounts can lead to the loss of progress, virtual items, and even financial repercussions. To enhance account security, multi-factor authentication (MFA) has emerged as an effective measure. Microsoft reports that enabling MFA can successfully block 99% of automated attacks targeting gaming accounts.
Alongside MFA, educating gamers about crucial practices is essential to protect against account breaches. This includes cautioning against suspicious links, emphasizing the importance of regularly updating account information, and promoting the use of strong and unique passwords by employing an advanced password manager such as PureKeep. Moreover, using a cutting-edge VPN such as PureVPN can also help protect gamers from DDoS attacks and bandwidth throttling while allowing them to play games safely on public WiFi.
Empowering gamers with knowledge regarding online threats and best practices is a key aspect of their protection. Gaming platforms should invest in comprehensive user education programs that offer tutorials, guidance on safe online behavior, and resources for reporting cyber threats. Collaborating with cybersecurity organizations and conducting awareness campaigns can further bolster user awareness and promote a safer gaming environment. By combining robust security measures and extensive user education, the gaming industry can take significant strides towards safeguarding accounts and mitigating the risks posed by online threats.
