The tap-estry of threats targeting Hamster Kombat players

In recent months, the Telegram-based clicker game Hamster Kombat has gained significant traction among cryptocurrency gaming aficionados. While the game’s simplistic mechanics primarily involve tapping a screen to score points, its allure lies in the potential to earn cryptocurrency upon the eventual release of a new coin by its developers. This appeal has led to the emergence of various imitators that capitalize on Hamster Kombat’s branding and gameplay; however, these copies aim more to generate revenue through advertisements than to directly exploit users.

ESET researchers have monitored the situation and noted that cybercriminals are also exploiting Hamster Kombat’s popularity. They report several security threats associated with unofficial versions of the game accessed through non-legitimate platforms. Malicious applications, particularly on Android, have begun circulating under the guise of Hamster Kombat. Notably, one variant called Ratel, recognized as spyware, poses significant risks to those who install it.

Launched in March 2024, Hamster Kombat has reportedly garnered 150 million active users by June 2024, potentially making it one of the top-played mobile games focused on cryptocurrency. Despite skepticism regarding these user figures, the game remains an undeniable phenomenon, drawing massive engagement on platforms like X, where the official account has over 10 million followers, alongside 50 million subscribers on its announcement channel. The forthcoming launch of a cryptocurrency token linked to the game has played a pivotal role in generating buzz and player interest.

The developers of Hamster Kombat seem to want to replicate the success of Notcoin, another cryptocurrency-focused game that launched a token on Telegram’s blockchain in May 2024. Unlike Notcoin, which distributed tokens based on the total score, Hamster Kombat plans to rely on different criteria, such as profit-per-hour, as a basis for token distribution, which adds a layer of intrigue to its business model.

The cybersecurity landscape surrounding Hamster Kombat is becoming increasingly concerning. In addition to Ratel, ESET has identified fake app stores posing as legitimate platforms for downloading the game, which only lead to unwanted advertisements. For Windows users, GitHub repositories offering supposed gamification tools like auto clickers and farm bots have been found to contain Lumma Stealer, a notorious piece of malware that targets cryptocurrency and sensitive information.

The Ratel spyware particularly exemplifies the dangers of unverified downloads. Disguised as Hamster Kombat, it can intercept SMS messages and notifications, leading to unauthorized financial transactions without the victim’s knowledge. Its stealth tactics, including hiding notifications from over 200 different apps, underscore the sophistication of the threats currently in circulation within this environment.

Windows users face their own set of risks with the Lumma Stealer malware lurking within enticing GitHub repositories promising game-enhancing functionality. These repositories can confuse players, luring them to download malware masquerading as legitimate tools aimed at improving in-game performance. This reflects a disturbing trend where the need for gamers to find an edge can lead them into dangerous territory.

The rapid rise of Hamster Kombat has inevitably attracted scrutiny from cybersecurity experts and government officials, who caution players about the financial risks associated with these gaming ecosystems that promise high returns with minimal effort. Although no malicious activity has been tied directly to the authentic Hamster Kombat app thus far, the surrounding terrain is fraught with dangers linked to counterfeit products.

In summary, while Hamster Kombat stands as a vibrant testament to the intersection of mobile gaming and cryptocurrency interest, it simultaneously opens the floodgates to a range of cybersecurity threats exploiting its fame. From malicious apps like Ratel to fraudulent web platforms and harmful GitHub projects, the game epitomizes how popularity can be double-edged—drawing in genuine users while simultaneously attracting those with malicious intent. As the game continues to evolve, vigilance from players and developers alike is crucial to maintain safety within this burgeoning digital landscape.