League of Legends (LOL) players, on July 9th, were told that they were targets of a cryptocurrency mining malware which was embedded in their Garena client. League of Legends officially warned users of the cryptocurrency jacking malware on their Philippines Facebook page.
The message which was posted on the 9th of July was as follows:
Mining Monero on League of Legends Client
This isn’t the first time such an incident is being reported. Hackers that do not have direct access to computers can get access to the CPU of unsuspecting users through third party platforms using malicious codes. The incidence with League of Legends clients serves as a reminder to users and developers. It’s time to audit security measures that are employed by third party sites.
Apart from using CPU while mining Monero and bugging down systems, the affected computers did not have any serious damage. The security team was unable to determine how much Monero was mined during the attack or how long the code was on the client. However, players do not need to worry about it any more since it has been removed. A trustworthy threat intelligence system has been put in place to prevent such an attack in the future.