A new wave of cyber threats is zeroing in on Generation Z, the cohort born between 1997 and 2012 commonly dubbed “Zoomers.”
As digital natives, Gen Zers have grown up immersed in technology, with smartphones, streaming platforms, and immersive online games forming the backbone of their entertainment and identity.
This constant connectivity and passion for digital media have turned Zoomers into prime targets for cybercriminals leveraging the very platforms that define this generation.
Recent research by Kaspersky outlines how malicious actors exploit the voracious appetite of Gen Z for games, movies, TV series, and anime.
The findings, spanning the period from April 2024 to April 2025, detail at least 19 million attempts to distribute malware disguised as sought-after game titles popular with Gen Z, namely Grand Theft Auto (GTA), Minecraft, and Call of Duty.
These three games alone accounted for a staggering 11.2 million of the recorded attacks, attributed to their enduring replay value and active online communities that frequently exchange content, mods, cheats, and unauthorized versions.
Cybercriminals effectively infiltrate spaces where gamers congregate, such as forums, Discord channels, and torrent-sharing platforms, camouflaging malware inside fake installers and enticing offers.
Malware-as-a-Service Tactics
One prevalent threat vector is phishing, where malicious domains closely mimic genuine gaming campaigns or streaming service portals, luring users with promises of exclusive in-game items, skins, or leaked content.
Kaspersky researchers discovered a phishing campaign closely replicating a Riot Games event by combining the worlds of Valorant and the animated series Arcane.
Unsuspecting gamers were prompted to participate in a “spin the wheel” contest, surrendering sensitive information such as account credentials, financial data, and contact numbers without receiving any rewards in return.
Beyond phishing, malware disguised as game installation files has emerged as a significant risk.
In November 2024, Kaspersky’s Global Research and Analysis Team (GReAT) unearthed a campaign distributing the Hexon stealer, a malicious toolkit that targets gaming and social media platforms, extracting user data from services like Steam, Telegram, WhatsApp, TikTok, and Discord.
The malware, marketed under a malware-as-a-service model, allows less technically adept cybercriminals to deploy sophisticated attacks by purchasing tools from more advanced operators.
Notably, Hexon underwent a rebrand to “Leet,” adding new evasion techniques such as sandbox detection based on system specifications and public IP analysis.
Streaming and Anime Fandoms Also in Crosshairs
The threat landscape extends beyond gaming to streaming platforms and anime communities cornerstones of Gen Z digital culture.
Kaspersky data reveals that Netflix-themed phishing attacks numbered about 85,000 an average of 233 attacks daily while over 250,000 attacks targeted anime fans, centering on popular series like Naruto, One Piece, and Demon Slayer.
Phishing emails and spoofed websites imitating major platforms such as Amazon Prime Video, Disney+, Apple TV+, and HBO Max were used to harvest subscription details or payment information, leading to an estimated seven million compromised accounts during the observed period.
These breaches are not limited to information theft. The attackers frequently deploy tools like RiskTool, which, though not intrinsically malicious, aids in concealing other threats such as cryptocurrency miners or additional malware payloads.
Compromised accounts are often recycled for further phishing campaigns or sold on underground markets. Kaspersky emphasizes the necessity for robust digital hygiene among Gen Z users.
Sticking to official digital distribution channels, enabling two-factor authentication, maintaining skepticism toward unsolicited giveaways or offers, utilizing virtual payment cards with spending limits, and deploying comprehensive security solutions are critical measures recommended for mitigation.
As malware and phishing campaigns grow increasingly sophisticated mirroring the evolving interests and online behaviors of Gen Z continuous awareness and proactive defenses remain the best safeguards against an ever-expanding cyber threat landscape.
Find this Story Interesting! Follow us on Google News, LinkedIn, and X to Get More Instant updates
