Kaspersky experts have discovered cybercriminals launched more than 7 million attacks on children, exploiting popular game titles in 2022.

In this report, Kaspersky experts analyzed threats related to the most popular online games for 3-16-year-old kids. Kaspersky security solutions detected more than 7 million attacks between January 2022 and December 2022. In 2021, cybercriminals attempted 4.5 million attacks, resulting in a 57% increase in attack attempts in 2022.

Phishing pages used by cybercriminals to target young players mostly mimicked global titles including Roblox, Minecraft, Fortnite, and Apex Legends games. To reach parents’ devices, cybercriminals purposely create fake game sites evoking children’s interest to follow phishing pages and download malicious files. 

Kaspersky shares digital security tips for holiday break
Kaspersky uncovers APT campaign vs organizations in war conflict areas

The most popular titles exploited by cybercriminals are Minecraft and Roblox, both in 2022 and 2021. The top children’s games ranked by a number of attacked users even included games for the youngest children, Poppy Playtime and Toca Life World, primarily designed for 3-8-year-old players.

Kaspersky experts observed a 41% rise in the number of affected users downloading malicious files disguised as Brawl Stars, reaching about 10 thousand gamers attacked in 2022. 

Roblox

In 2022, 232,735 gamers encountered almost 40,000 files, including malware and potentially unwanted applications, that were disguised as the most popular children’s games. Since children of this age often do not have their own computers and play from their parents’ devices, the threats spread by cybercriminals are most likely aimed at obtaining the credit card data and credentials of the parents.

In the same period, nearly 40,000 users tried to download a malicious file, mimicking Roblox, a popular kids’ game platform. This resulted in a 14% increase in the number of victims, compared to 33,000 gamers attacked in 2021. Since half of Roblox’s 60 million users are under the age of 13, the majority of victims of these cybercriminals’ attacks are potentially children who lack knowledge of cybersecurity.

Scams

According to Kaspersky statistics, phishing pages used by cybercriminals to target young players primarily mimicked Roblox, Minecraft, Fortnite, and Apex Legends games. In total, over 878,000 phishing pages were created for these four games in 2022. 

One of the most common social engineering techniques targeting young players involves offers to download popular cheats and mods for games. On a phishing site, the user may get a whole manual on how to install the cheat properly. 

To keep your kids safe online, Kaspersky recommends users:

• Don’t neglect to show interest in your kids’ online activity. Ask them if you can watch their favorite series or listen to music tracks together. As an option, you can learn together some secure practices to stay safe online. 
• A good option could be parental control apps. But it’s important to discuss this topic with your child to explain how these apps work and why they’re needed to stay safe online. 
• Explain that sensitive information should only be shared via messengers and only with people they know in real life. You can be a role model and show them good examples of good behavior. 
• Spend more time communicating with your kids about online safety measures. Try paying attention to your own habits. Do you use your smartphone while eating or talking? Are your kids mimicking any of your habits or behavior patterns? Do they react in a different way when you put your phone away?
• Make talks about cybersecurity more enjoyable and interesting by discussing them with your child through games and other entertaining formats.