TL;DR:
Not much info in the articles, so I’ll just sum-up for everyone. If you’ve not heard, this news is making the round now.
Malicious ads have appeared that will direct you to a fake PkMn TCGO page which will download remote-access malware to your device. At present, it only affects Windows machines, but it’s something to be aware of.
Background:
Summary
Hackers can create fake websites that look just like the real thing, but are in fact hosted on malicious servers. When connecting to the fake server, some can begin auto-downloading (drive-by download) files to your local computer which do unwanted stuff. It could also be a clickable download link… (I’m not trying it, as I don’t have my new sacrificial VM completed.)
In this case, it’s a remote-access trojan. Which means a host of things could be additionally installed without your knowing, or without your ability to stop it.
To avoid this, always make sure when connecting to a site/server on the internet, check the destination URL address before going there. (There are various ways to do this, but I’ll leave that research to you.)
Important NOTE:
At this time, Nintendo has NOT been hacked*. Still, these bad actors could hack your related accounts. They may phish (trick you into entering) your PTCGO login, or other credentials, so always, Be mindful of what you’re interacting with online.
Here’s one original article, with a better picture of the site (NO This does not link to the malware site.) It does give more info about the malware, etc.
https://www.bleepingcomputer.com/news/security/hackers-push-fake-pokemon-nft-game-to-take-over-windows-devices/
