Kaspersky Labs team of experts published a detailed research report that analyzes a sustained cyberespionage campaign conducted by the cybercriminal organization. The Winnti group has been attacking companies in the online video game industry since 2009 and is currently still active. The malware has been known to steal digital certificates used by gaming companies, which allows the attackers to distribute malicious software signed by trusted entities. With the use of that malware, the attackers are targeting online game software developer companies. Having infected gaming companies that do business in the MMORPG space the attackers potentially get access to millions of users.”]
Source: https://securelist.com/winnti-faq-more-than-just-a-game/57585/