More than 610,000 Roblox accounts were reportedly stolen. Was yours or your child’s among them? Ukrainian police arrested three individuals in Lviv who allegedly orchestrated one of the largest Roblox account theft operations to date.
Between October 2025 and January 2026, the hacking group is said to have compromised over 610,000 Roblox accounts, including at least 357 high-value “elite” accounts, making around $225,000 from selling access to them. The hackers distributed infostealing malware disguised as game-enhancement tools, harvested login credentials from infected devices, and sold accounts through a Russian website and closed online communities based on their value.
Read more…
Source: Malwarebytes Labs
Sign up for the Cyber Security Review Newsletter
The latest cyber security news and insights delivered right to your inbox
Related:
- UK: NHS Dumfries and Galloway hit by cyber attack with ‘significant quantity’ of data at risk
March 15, 2024
NHS Dumfries and Galloway has been hit by a cyber attack, with the health board saying a “significant quantity” of data has been put at risk and services could potentially be disrupted. In a statement posted to its website on Friday, the board said the attack was “focused and ongoing” and the files accessed could include ...
- Vietnam: Over 1,800 cyber attacks detected in Q1
March 15, 2024
As many as 1,812 cyber attacks were detected in Vietnam so far this year, a drop of 38% compared to the same period last year, according to the Ministry of Information and Communications (MIC). A newly released report by the ministry shows that the information security industry in Vietnam got an estimated revenue of 804 billion ...
- Ransomware’s appetite for US healthcare sees known attacks double in a year
March 15, 2024
Following the February 21 attack on Change Healthcare, scores of people in the US have been living with the brutal, real-world effects of ransomware. Described by the American Hospital Association (AHA) President and CEO Rick Pollack as “the most significant and consequential incident of its kind against the US health care system in history,” the attack ...
- Member of LockBit ransomware group sentenced to 4 years in prison
March 14, 2024
A dual Canadian-Russian national has been sentenced to four years in prison for his role in infecting more than 1,000 victims with the LockBit ransomware and then extorting them for tens of millions of dollars. Mikhail Vasiliev, a 33-year-old who most recently lived in Ontario, Canada, was arrested in November 2022 and charged with conspiring to ...
- Cybercrime Atlas: International effort to disrupt cybercrime moves into operational phase
March 14, 2024
The Cybercrime Atlas, a massive undertaking that aims to disrupt cybercriminals across the globe, enters its operational phase in 2024, two years after organizers laid the groundwork at the RSA Conference.… Its members now include 20-plus law enforcement agencies, private-sector security companies and incident responders, financial institutions, NGOs, and academics. Over the past year, the investigations ...
- Businesses leaving their Kubernetes containers exposed to ransomware
March 14, 2024
As businesses look for faster and more flexible development frameworks, the use of containers and Kubernetes (K8s) continues to rise. While Kubernetes theoretically has several security advantages compared to traditional applications, it remains one of the top concerns for organizations on their cloud-native journey. This concern is fairly valid it seems. A recent report found that ...