The gaming community is one of the fastest growing targets for credential stuffing attacks. Because criminals are able to turn a quick profit, the gaming industry has become one of the most lucrative targets, according to a new report from Akamai.
Over the course of 17 months, researchers at Akamai analyzed billions of credential stuffing attacks against gaming websites. The new 2019 State of the Internet / Security Web Attacks and Gaming Abuse Report, found that hackers have carried out 12 billion credential stuffing attacks against gaming websites between November 2017 and March 2019.
Criminals reportedly target popular games in search of valid accounts, which, once illegally accessed can then be sold or traded. Accounts that are connected to valid credit cards have greater value to attackers, who are able to purchase in-game items, including currency used within the game, once they hack the account.
“One reason that we believe the gaming industry is an attractive target for hackers is because criminals can easily exchange in-game items for profit,” said Martin McKeay, security researcher at Akamai and editorial director of the State of the Internet / Security Report. “Furthermore, gamers are a niche demographic known for spending money, so their financial status is also a tempting target.”
“While gaming companies continue to innovate and improve their defenses, these organizations must also continue to help educate their consumers on how to protect and defend themselves,” said McKeay. “Many gamers are young, and if they are taught best practices to safeguard their accounts, they will incorporate those best practices for the rest of their lives.”