Feed aggregator

A new Windows malware campaign hides inside pirated PC games and modified installers for franchises like Far Cry, Need for Speed, FIFA, and Assassin’s Creed.

Researchers estimate that more than 400,000 devices worldwide have been infected, with around 30,000 users in the US.

The infection method is simple and effective. Users are lured into installing a fully functional free game. While the cracked and repacked game appears to work, the malware installs silently in the background.

The strain is being called “RenEngine loader” and sometimes referred to as Ren’Py because parts of the malicious code are embedded in a legitimate Ren’Py launcher used to run some visual novel games. When the launcher runs, it decompresses the game files and secretly starts the infection chain.

Ren’Py is a legitimate, open-source visual novel engine used by developers to make story-driven games with text, images, sound, and interactive choices. The malware in this case is not Ren’Py itself. Attackers are abusing the engine or its launcher as a delivery method to hide malicious code inside pirated game installs.

In practice, the primary infection vector is software piracy. Victims download cracked games or repacked installers from unofficial sites, then run what looks like a normal game launcher or setup file. In reality, they’re infecting their computer with a malware loader.

At the time of writing, this loader is trying to deliver an infostealer called ARC, which can grab saved browser passwords, cookies, cryptocurrency wallets, autofill data, system details, and clipboard contents.

But we’ve also seen other payloads being dropped, including Rhadamanthys stealer, Async Remote Access Trojan (RAT), and Backdoor.XWorm, which can expand the damage from credential theft to full remote control of the machine. That can mean account takeovers, financial fraud, crypto theft, and deeper compromise of personal or work data.

Worst of all, a user may not realize they are infected until usernames and passwords have been stolen or the machine starts behaving strangely.

How to stay safe

The most important lesson here is that “free” cracked software is often a delivery mechanism for malware, not a bargain. Once a loader like this is on the machine, the real goal is usually to steal credentials or install a secondary payload that is more persistent and more damaging.

Some other general advice to stay safe:

Don’t download installers from unofficial sources.
Use real-time, up-to-date anti-malware protection to block loaders.
Keep your software up to date, especially Microsoft patches and other security-related programs.

If you think your computer is infected and want to make sure, follow the instructions posted here. The amazing volunteers on our forums will help you through the process of cleaning your machine.

We don’t just report on threats—we remove them

Cybersecurity risks should never spread beyond a headline. Keep threats off your devices by downloading Malwarebytes today.

Categories: Malware Bytes

Show HN: I built S3 from scratch in Go – open-source, one-command deploy

Hacker News - Mon, 06/08/2026 - 6:51am

Built an S3-compatible storage server solo in Go with erasure coding, JWT auth, multipart upload, and Prometheus metrics. 3000+ lines of Go. Open source. 1 command deploy.

Comments URL: https://news.ycombinator.com/item?id=48443686

Points: 1

# Comments: 0

Categories: Hacker News

9 Surprising Foods You Can Make in Your KitchenAid Stand Mixer

CNET Feed - Mon, 06/08/2026 - 6:46am

A KitchenAid mixer can be used to make more than just baked goods.

Categories: CNET

Biographical Information Summary - This is Just a Summary Joe Pearce
About Joe Pearce joeintenn
Links Joe Pearce
Flounder's Keylime Pie is the Best in the World, At Least I Think So... Joe Pearce
Harley Ride Joe Pearce
Cobra with New Cover Joe Pearce
Mustang Cobra After Ceramic Coating Joe Pearce
Carter County Cruise In Joe Pearce
2003 Ford Mustang SVT Cobra Convertible NAPA Auto Car Show Top 10 Joe Pearce
Ponies in the Smokies - Mustang Trophy Joe Pearce

Feed aggregator

Ransomware pressure and stricter resilience expectations are exposing a gap that Gulf enterprises have not fully confronted

SlimTide Capsules: Don't Buy Until You Read This Real Truth

Making Claude a chemist (NMR spectroscopy)

Mona's Bug Bash

Uber Opens London Waitlist for Wayve Robotaxis Ahead of Launch

Founders Fund Mafia game (feat Sam Altman, Palmer Luckey, Bryan Johnson) [video]

There are reliable ways to tell if someone is lying to you

Nex Playground: the family game-night gadget that revives the spirit of the Wii

How to Win in Life

Panic First, Evidence Later

Why this year's World Cup ball may not fly as far

The Security Mindset (2008)

You can dislike AI without it being for moral reasons

Designing the HF CLI for both humans and agents

Let us filter AI slop, you cowards

Volt – a compiled language where every keyword is 3 characters

Most AI at work is bullshit

Pirated PC games are delivering password-stealing malware

Show HN: I built S3 from scratch in Go – open-source, one-command deploy

9 Surprising Foods You Can Make in Your KitchenAid Stand Mixer

Pages

Welcome to Joe Pearce's Home Page.

Web page offered by Joe Pearce © 2004 - 2025 - All rights reserved.

Thanks to the ETSU Computer and Information Sciences Department.

Thanks to the NSTCC Computer and Information Sciences and Computer Engineering Technologies Department.

This is my Favicon.

You are here

Feed aggregator

Pages

Welcome to Joe Pearce's Home Page.

Web page offered by Joe Pearce © 2004 - 2025 - All rights reserved.

Thanks to the ETSU Computer and Information Sciences Department.

Thanks to the NSTCC Computer and Information Sciences and Computer Engineering Technologies Department.

This is my Favicon.