Blog Security News GTA Cheat Users Exposed in Breach as Minecraft Malware Hits 116,000 Players

GTA Cheat Users Exposed in Breach as Minecraft Malware Hits 116,000 Players

Brooke Seipel

Jun 05, 2026

5 MIN READ

One gaming cyberattack this week exposed nearly 64,000 users. 

Another has already infected more than 116,000 players.  

Both are connected by the same common gaming behavior: looking for a cheat, mod, or shortcut. 

This week in scam news, a popular Grand Theft Auto V cheat service was hacked, exposing tens of thousands of users. At the same time, McAfee researchers uncovered a massive malware campaign spreading through fake Minecraft mods, cheats, and game clients. 

The takeaway is simple: some of the biggest threats facing gamers aren’t happening inside games. They’re hiding in the downloads, websites, and tools players use around them. 

Let’s start with the GTA breach. 

Take control with McAfee+ Advanced

Full-service identity and credit protection now in one plan

GTA Cheat Service Breach Exposes Nearly 64,000 Users 

Atlas Menu, a cheat service for Grand Theft Auto V, was reportedly hacked, exposing data belonging to nearly 64,000 users. 

According to reports, the leaked information included: 

  • Email addresses 
  • Usernames 
  • Scrambled passwords 
  • IP addresses 
  • Customer support tickets

The hacker who claimed responsibility later posted the data online. 

Why This Matters 

Many players think of cheats as harmless tools that unlock special abilities, provide advantages, or simply make games more entertaining. 

But unofficial cheat services often operate outside the protections offered by legitimate gaming platforms. 

That means users may be: 

  • Sharing personal information with unknown developers 
  • Downloading unverified software 
  • Exposing themselves to malware 
  • Putting gaming accounts at risk 

And that brings us to an even bigger threat. 

Minecraft Malware Campaign Has Already Infected 116,000 Players 

McAfee researchers recently uncovered a large-scale malware operation targeting gamers searching for Minecraft mods, clients, and cheats. 

The campaign is called WeedHack. 

What Is WeedHack? 

WeedHack is a type of Malware-as-a-Service (MaaS). 

That means cybercriminals package malware into a subscription service that other attackers can use. 

Researchers found that: 

  • More than 116,000 victims have been infected since January 
  • The campaign continues to add roughly 2,000 to 3,000 new victims every day 
  • More than 3,800 malicious files have been identified 
  • More than 240 malicious download URLs have been linked to the operation 

Premium versions reportedly cost as little as $5 per month and include tools that allow attackers to remotely access victims’ devices and webcams. 

What WeedHack Can Steal 

Once installed, the malware can collect: 

  • Minecraft account credentials and session IDs 
  • Discord, Steam, and Telegram credentials 
  • Browser passwords and cookies 
  • Cryptocurrency wallet information 
  • Screenshots and device information 
  • Files stored on a victim’s computer 

Premium versions can also provide: 

  • Live webcam access 
  • Live screen sharing 
  • Remote keyboard and mouse control 
  • Keylogging capabilities 
  • Full remote access to the infected device

Get the full explainer here. 

How McAfee+ Advanced Helps Protect Gamers 

Gaming malware campaigns rely on three things: 

  1. Getting users to visit malicious websites 
  2. Convincing them to download infected files 
  3. Encouraging them to ignore security warnings  

With McAfee+ Advanced, multiple layers work together before any damage is done:  

  • Scam Detector flags suspicious texts, emails, links, QR codes, and even deepfake videos before you engage 
  • Secure VPN keeps your data private, especially on public Wi-Fi  
  • Web Protection helps block risky sites, even if you do accidentally click  helps block risky sites, even if you do accidentally click   
  • Password Manager doesn’t just help you make unique, strong passwords, it keeps them stored and organized for you
  • Device Security helps detect malicious apps or downloads   
  • Identity Monitoring alerts you if your personal info shows up where it should not, so you can act fast   
  • Personal Data Cleanup helps remove your information from sites selling it. 
  • Online Account Cleanup assists in taking down your old, forgotten accounts across the web 
  • Social Privacy Manager helps you monitor and change privacy settings across your social platforms in just a few clicks 

Together, these protections are designed to address the broader range of online risks people face every day.

Other Scam and Cybersecurity News This Week 

Here are some other important headlines to be aware of: 

Carnival Data Breach Impacts Nearly 6 Million Customers 

Carnival Corporation disclosed a data breach affecting nearly six million customers after a social engineering attack allowed an unauthorized individual to gain access to part of the company’s IT systems. 

Exposed information may include: 

  • Names 
  • Addresses 
  • Email addresses 
  • Phone numbers 
  • Dates of birth 
  • Government-issued identification numbers

Affected customers should be alert for phishing emails, fake customer support calls, and identity theft attempts. 

Instagram AI Support Tool Exploit Raises Security Questions 

Instagram says it has fixed an issue that reportedly allowed attackers to manipulate its AI-powered support chatbot and gain access to other users’ accounts. 

According to reports, attackers were allegedly able to influence the account recovery process and associate new email addresses with targeted accounts. 

The incident highlights a growing challenge for AI-powered customer support systems: convenience cannot come at the expense of identity verification. 

AI Voice Cloning Scams Continue to Surge 

Voice cloning scams continue to grow as AI tools make it easier than ever to imitate friends, family members, and coworkers. 

According to FBI data cited this week, Americans lost more than $893 million to AI-related scams last year. 

These scams included: 

  • Voice cloning attacks 
  • AI-generated phishing emails 
  • Romance scams 
  • Other AI-assisted fraud schemes 

If someone calls claiming to be a loved one in distress and urgently requests money, verify the situation through another communication channel before taking action. 

McAfee Safety Tips This Week 

Whether you’re downloading a Minecraft mod or answering an unexpected phone call, the same rule applies: 

Slow down before you click, download, or share information. 

Here are a few ways to stay safer: 

  • Download mods, clients, and game tools only from trusted sources. 
  • Be skeptical of download links shared in YouTube comments, Discord servers, or social media posts. 
  • Never disable antivirus software to install a game mod. 
  • Enable multi-factor authentication on gaming, Discord, and email accounts. 
  • Use unique passwords for gaming accounts. 
  • Treat “free cheats,” exclusive hacks, and too-good-to-be-true downloads with caution. 

We’ll be back next week with more scams making headlines. 

FacebookLinkedInTwitterEmailCopy Link

Stay Updated

Follow us to stay updated on all things McAfee and on top of the latest consumer and mobile security threats.

FacebookTwitterInstagramLinkedINYouTubeRSS
Brooke Seipel Editor in Chief

Brooke Seipel is the Content Editor in Chief at McAfee, where she leads the company's content strategy with a focus on cybersecurity education. With a decade of experience in audience...

More from Security News

Back to top