Security firms like Kaspersky and Malwarebytes have repeatedly identified “cracked game” aggregators as primary vectors for malware.