Roblox developers are losing entire games to malware attacks
ID: 1aaafa1b-23c3-5b34-a9c1-2ac01eadbf32
STIX ID: report--1aaafa1b-23c3-5b34-a9c1-2ac01eadbf32
Feed Name: Malwarebytes Blog
Attackers targeted Roblox developers by posing as recruiters on Discord and persuading victims to install a malicious Python package named “robase”; the package acted as an infostealer that stole authenticated browser/Discord sessions and allowed attackers to take over developer accounts, games, and in-platform currency. Multiple developers lost control of games and Robux, experienced difficulty recovering assets through Roblox support, and the report includes defensive guidance such as avoiding unsolicited installers, testing untrusted software in isolated environments, monitoring active sessions, enabling platform protections, documenting incidents, and using real-time anti-malware.
Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.
