A malware campaign targeting Minecraft has allegedly compromised more than 116,000 players.

A malware campaign targeting Minecraft has allegedly compromised more than 116,000 players.

      What began as yet another Minecraft modding initiative has evolved into one of the most alarming malware incidents linked to gaming communities this year. Security analysts at McAfee have revealed a widespread malware scheme named “WeedHack,” which has reportedly compromised more than 116,000 devices, primarily targeting Minecraft gamers through fraudulent mods, cheats, pirated software, and community tools.

      Unlike many conventional malware efforts that focus solely on stealing passwords or cryptocurrency wallets, this campaign seems to have ventured into harassment, cyberbullying, and intrusive surveillance.

      According to McAfee's findings, the operation was allegedly managed by a teenager and heavily depended on Discord, Minecraft communities, and social engineering strategies to distribute harmful files masquerading as popular game-related downloads.

      A malware operation centered around Minecraft communities

      Researchers indicate that WeedHack proliferated through malicious Minecraft mods, cheats, installers, macros, and pirated tools exchanged on Discord servers and gaming forums. Victims thought they were downloading performance enhancements or gameplay modifications, but instead, they installed malware capable of extracting personal information and remotely accessing their systems.

      The malware is said to have captured browser credentials, Discord tokens, cryptocurrency wallet details, screenshots, and personal documents. In some incidents, users who were infected faced blackmail, harassment, or public embarrassment based on the stolen private data.

      McAfee points out that the operation thrived on the trust that young gamers placed in files shared within online communities. Minecraft continues to be one of the largest gaming ecosystems globally, with millions of active players and a vast modding culture that often involves downloading third-party software from unofficial sources.

      This openness created an ideal breeding ground for the malware campaign to proliferate quickly.

      The report also underscores how contemporary malware operations increasingly merge cybercrime with online harassment culture. Researchers have noted that some victims experienced targeted bullying and intimidation after becoming infected, making the campaign more intrusive than typical, financially driven attacks.

      The malware is reported to have continuously evolved to evade antivirus detection, with operators modifying payloads and distribution strategies across various platforms.

      Why this campaign is particularly worrying

      Gaming communities have increasingly emerged as prime targets for cybercriminals, as younger users often install unofficial files with more casual attitudes than enterprise users or seasoned professionals.

      Minecraft, in particular, boasts one of the largest ecosystems of user-generated content in gaming, making it exceptionally challenging for players to differentiate between safe mods and harmful downloads.

      McAfee

      The extent of the WeedHack campaign further illustrates how accessible cybercrime tools have become. Researchers suggest that the operation did not necessitate sophisticated, state-backed infrastructure or advanced hacking capabilities to infect over 116,000 devices globally.

      Crucially, the campaign emphasizes how malware is evolving beyond mere financial theft. Cybercriminals are increasingly exploiting personal data, Discord access, screenshots, and online identities for harassment and social manipulation.

      What players should do

      McAfee advises Minecraft players to steer clear of downloading mods, cheats, or pirated software from unofficial Discord servers or unfamiliar sources. Users are also encouraged to enable multi-factor authentication, routinely scan their devices for malware, and avoid using the same passwords across gaming platforms.

      The report serves as a reminder that gaming platforms are no longer isolated from broader cybersecurity threats. Online gaming communities increasingly operate like social networks and face similar risks related to scams, surveillance, account theft, and coordinated abuse.

      For Minecraft players, the uncomfortable yet essential takeaway is that the most significant threat online may no longer be the creepers within the game, but rather the files being downloaded outside of it.

A malware campaign targeting Minecraft has allegedly compromised more than 116,000 players. A malware campaign targeting Minecraft has allegedly compromised more than 116,000 players.

Other articles

DeepSeek secures its initial external funding: a $7 billion round valuing the company at up to $59 billion. DeepSeek secures its initial external funding: a $7 billion round valuing the company at up to $59 billion. China's DeepSeek plans to raise approximately $7 billion in its initial funding round, with supporters including Tencent and CATL, at a valuation of as much as $59 billion. A malware campaign targeting Minecraft is said to have infected more than 116,000 players. A malware campaign targeting Minecraft is said to have infected more than 116,000 players. According to researchers, a malware campaign masquerading as Minecraft mods and cheats has infected more than 116,000 devices via Discord servers and gaming communities. Apoha surfaces from stealth mode with $36 million in funding to instruct machines on the behavior of matter. Apoha surfaces from stealth mode with $36 million in funding to instruct machines on the behavior of matter. London-based deeptech company Apoha has secured $36 million in funding, led by Singular, to develop Liquid State Intelligence, which assesses molecular behavior in real-world scenarios. Apoha comes out of stealth mode with $36 million to educate machines on the behavior of matter. Apoha comes out of stealth mode with $36 million to educate machines on the behavior of matter. Apoha, a deeptech company based in London, has secured $36 million in funding, with Singular leading the investment, to develop Liquid State Intelligence, which focuses on assessing the behavior of molecules in real-world scenarios. Martin Scorsese has officially aligned himself with the AI movement, and it's not what anyone anticipated. Martin Scorsese has officially aligned himself with the AI movement, and it's not what anyone anticipated. Martin Scorsese has joined as a partner and advisor at the AI startup Black Forest Labs, utilizing its technology for storyboarding in an upcoming film. Flok Health secures $12.5M to expand an AI physiotherapist approved by the NHS for unsupervised operations. Flok Health secures $12.5M to expand an AI physiotherapist approved by the NHS for unsupervised operations. Flok Health secured $12.5 million in a Series A funding round led by AlbionVC to expand its CQC-approved AI physiotherapy clinic, which is currently providing treatment for back pain to 2.4 million NHS patients.

A malware campaign targeting Minecraft has allegedly compromised more than 116,000 players.

Researchers have reported that a malware campaign masquerading as Minecraft mods and cheats has infected more than 116,000 devices via Discord servers and gaming communities.