| HIGHLIGHTS • A new malware called WeedHack is targeting Minecraft players through fake mods and cheat tools. • The malware can steal passwords, browser data, and cryptocurrency wallet information from infected devices. • Security experts advise downloading mods only from trusted sources and using reliable antivirus protection. |
If you’re a Minecraft player, it’s a good time to be extra cautious. Security researchers have warned about a new malware campaign targeting the Minecraft community through fake mods, cheat clients, and downloadable tools shared online. According to a report from McAfee, the malware—called WeedHack—has already been detected more than 116,000 times and continues to infect thousands of devices every day. Players who download files from untrusted sources could unknowingly expose their systems to serious security risks.
According to researchers, the WeedHack malware is being distributed through YouTube videos, fake download websites, and manipulated search results that mimic popular Minecraft modding tools. Players looking for third-party clients, cheats, or game enhancement software may unknowingly download infected files that appear to be legitimate.
The report also reveals that WeedHack is being offered as a malware-as-a-service (MaaS) product on the open internet, making it accessible even to individuals with little technical expertise. Subscription plans reportedly start at just $5 per month, while a limited free version is also available.
Once installed, the malware can harvest a wide range of sensitive information from a victim’s device. This includes browser cookies, saved passwords, screenshots, system information, and login credentials linked to platforms such as Discord, Steam, and Telegram. It can also target cryptocurrency wallets and collect authentication data from multiple web browsers.
The premium version of WeedHack reportedly goes a step further by providing attackers with remote access to infected computers. Its advanced features include webcam surveillance, keystroke logging, screen sharing, file management, and remote command execution, allowing cybercriminals to take extensive control of compromised systems.
Researchers also discovered a Telegram community connected to the WeedHack malware, with hundreds of members actively participating in discussions. According to the report, many users in the group appeared to be young individuals who were using the malware to spy on, harass, or intimidate fellow gamers.
The investigation further revealed that cybercriminals are impersonating several popular Minecraft modding clients, including Meteor Client, Wurst Client, LiquidBounce, and Impact Client. Because some of these tools are distributed through community-managed platforms rather than official websites, attackers can exploit search engine results and create highly convincing fake download pages. As a result, unsuspecting players may end up downloading malware instead of the software they intended to install.
ALSO READ : Avatar: The Last Airbender Season 2 OTT Release Date, Cast, Plot & Netflix Details
Tips for Staying Secure
To avoid falling victim to malware threats, cybersecurity experts recommend downloading Minecraft mods and add-ons only from trusted and verified sources. Players should also carefully check the authenticity of websites before installing any files and keep reliable antivirus software active on their devices to detect potential threats.
The report further points to a worrying trend in the cybersecurity landscape: advanced cybercrime tools are becoming increasingly affordable and widely available. As these malicious tools become easier to access, even individuals with limited technical knowledge can launch sophisticated attacks, increasing the risks for online gamers and internet users alike.
ALSO READ : Bhooth Bangla OTT Release: Date, Cast & Latest Updates