Malware Targets Poker Players

The i2Ninja malware allows hackers to collect information from our computer and e-mails and can serve as a kind of “PokerGrabber” on the devices of users playing in the major poker rooms.

The i2Ninja was created by Russian hackers and is a malware specifically targeting poker players and utilizing I2P. The I2P is a piece of free software, used for building anonymous or pseudonymous virtual private networks. The name refers to the original acronym of Invisible Internet Project. The VPN established by the I2P is a simple layer for the programs to use for anonymous communication in a shared dynamic network.

The i2Ninja malware enables hackers to collect information form users’ computers and e-mails and to act as a “PokerGrabber” through some of the major poker sites like PokerStars, Full Tilt Poker, PartyPoker, 888Poker and Titan Poker. According to Kaspersky Lab’s malware researcher Dmitry Tarakanov, the i2Ninja is likely to be spread through the usual methods, including spams, drive-by download (that is, download through a website) and direct download via botnet.

Once the malware is up and running, it allows remote access to the computer without the hacker being required to reveal their identity or location. The information grabbed from the computer is encoded and forwarded to the hacker.

Members of a Russian counter-cyber criminal forum warn poker players to always have the latest updates of their anti-virus and anti-malware software and to be on alert for unusual activity on their bank and poker accounts or Facebook profiles. If possible, use a dedicated computer for playing online poker.