Contact us
Login
Register

Blog

Cyber Security and Online Gaming – What Gamers Should Know

Three billion players, one massive attack surface. A fellow gamer breaks down the risks hiding in your favourite games — and how to actually protect yourself.

Benjamin McMichael – Intern, Cyber Security Institute*

 

Whether you’re a dedicated gamer or someone who just likes to unwind with a game after a long day, you probably don’t think of your gaming activities as a target for cybercrime. The truth, however, is very different.

As a final year game design student and intern at the Cyber Security Institute, I have a keen interest in both gaming and cyber security. My experience in both fields has shown me that cyber security for gaming is a neglected topic, but a critically important one. Online gaming has a global estimated population of over 3 billion players. In cyber security terms, this represents a massive attack surface.

“While most devices used for work purposes are covered by some level of threat protection, many devices used for gaming are not — and cybercriminals know it.”

This post focuses on PC gaming specifically. From a cyber risk perspective, PC gaming is significantly more insecure than console gaming. The open nature of the PC platform exposes users to a far wider array of attack vectors compared to the more restricted, sandboxed environment of consoles.

A prime example is the so-called “Shortcut Culture” in PC gaming — cheats, mods, and cracks — fuelled by the willingness to compromise security for competitive advantage or free content. Many gamers face threats ranging from malware to identity theft, account loss, and even doxxing, without even realising it.

 

Use Legitimate Game Marketplace Platforms

One of the most fundamental ways gamers protect themselves is by using credible gaming platforms — Legitimate Digital Distribution Platforms (LDDPs). Examples include Steam, Epic Games, Battle.net, the Ubisoft Launcher, and the Riot Client.

These platforms offer a controlled ecosystem in which to buy games while remaining safer from bad actors. While scammers can still appear on LDDPs, the risk is significantly reduced. That said, there is no such thing as zero cyber security risk. On platforms like Steam, where marketplace trading takes place, gamers can be scammed while trading skins — some of which hold significant real-world monetary value.

 

Enable Multi-Factor Authentication

One very effective way to protect your gaming assets and accounts is by deploying multi-factor authentication (MFA). Most legitimate platforms have MFA set up, requiring a confirmation on your phone at each sign-in.

In my own experience, Steam’s MFA gives the exact location of each login attempt and offers two verification methods: scanning a QR code or entering a time-limited code from the mobile app. While it can feel like friction, the protection it provides is substantial.

Why It Matters

If a malicious actor obtains your password through a scam or data breach, MFA means they still cannot access your account without your physical device. It’s free, easy to set up, and one of the most effective protections available.

 

Download Games from Legitimate Sources Only

Pirating games is not uncommon, but the risk involved is substantial. A pirated game typically requires running an installer file — an .exe file — whose contents are completely unknown and could contain trojans or other malware. This is one of the most common ways gamers put themselves at risk.

“If you are not paying for the product — you are the product.”

 

Use a Reputable Anti-Virus Solution

An anti-virus solution reduces the risk of malware from a downloaded game being able to deploy on your PC. Windows Defender is many gamers’ default, but an enhanced option offering identity theft monitoring, credential protection, and advanced network firewalls is strongly recommended.

Consider upgrading to solutions like Bitdefender Total Security (with Game Profile), Malwarebytes Premium, or Kaspersky Gaming Edition for more comprehensive protection.

 

Understand Kernel-Level Anti-Cheat Software

Kernel-level anti-cheats are a big sticking point in the gaming community. Once installed, they operate at a higher privilege level than your own user account — meaning they can perform tasks you cannot, without asking for permission each time.

Examples include Riot Games’ Vanguard (which runs as a system-level service from the moment the OS boots) and Easy Anti-Cheat (which only activates when a compatible game is launched). In any other context outside gaming, a kernel-level anti-cheat would be classified as a remote access tool given what it accesses and controls.

Two Practical Options

To reduce privacy risks: either avoid games that require kernel-level anti-cheat entirely, or use a Virtual Machine or dual-boot setup — keeping your personal and work files completely separated from your gaming environment.

 

Stay Alert on Community Platforms

Community platforms like Discord have become specific targets for cyber-attacks. A common example is fake Discord Nitro giveaway links, which trick users into entering their login credentials. Once an account is compromised, it’s often used to spread malicious links to servers and contacts — quickly leading to further compromises across multiple users.

The rule here is simple: do not click on anything suspicious. If you receive a link offering something free, especially involving crypto or exclusive offers, treat it as click-bait — even if it appears to come from a friend.

 

Best Practices — from a Gamer, for Gamers

  • Be alert to sketchy links and odd behaviour on Discord, Steam, and any platform you use.
  • Use a reputable gaming anti-virus solution to boost your device’s security.
  • Don’t pirate games — buy them or wait until you can. The risk simply isn’t worth it.
  • Stick to legitimate gaming platforms for all purchases.
  • Never click links you can’t verify — urgency or ‘too good to be true’ are red flags.
  • Enable MFA on all your accounts. It’s free, quick to set up, and highly effective.

 

Happy, safe gaming!

 

*Benjamin McMichael is a final-year Game Design student and student intern at the Cyber Security Institute. With a passion for both gaming and cyber security, Benjamin explores the intersection between digital entertainment and cyber risk, helping gamers understand the threats that exist beyond the screen.

Certificate in Cyber Security

Course Details

This practical, hands-on course focuses on establishing a foundation in Cyber Security by introducing candidates to cyber-crime, attack methods, and managing cyber risks.

Mode of Offering: The course is presented via facilitated    e-learning, utilising an e-learning platform and virtual classes.

Intended Audience:

This course is designed for individuals embarking on a career in Cyber Security or performing security functions.

Requirements

Applicants should have a Matric certificate or equivalent qualification with suitable IT knowledge, Internet access, and a PC or laptop on which applications can be installed and services accessed.

Costs:

R12,500 all inclusive

Duration:

5-months

Intake:

We have two main intakes, one at the end of February and another at the end of June. Additional intakes may be scheduled depending on application volumes and requirements.

Course Overview:
Cyber-crime‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎
  • Introduction to cyber-crime
  • Cyber-attack methods (e.g., ransomware, sextortion, email fraud)
  • Cyber criminology (actors behind the attacks, criminal networks, state-sponsored entities, etc.)
  • Tracing the online trail
  • Dark web (criminal forums)
  • Case studies of attacks in SA & Global.
  • Crime-as-a-Service
  • Internet of (Criminal) Things.
Practical Cryptography
  • Introduction to cryptography.
  • Encryption and Decryption.
  • Hash functions
  • Blockchain
  • Virtual Currencies
  • Digital signatures
  • Digital certificates
  • Cryptographic Protocols (SSL, SSH, etc.)
Course Overview:
Cyber Governance, Risk & Compliance
  • Overview of cyber governance, risk, and compliance
  • POPIA & GDPR
  • Data Privacy
  • Policies in action
  • NIST, ISO27001
  • Controls
  • Planning for contingencies
  • Developing the security program
  • Risk analysis and management
Cyber Intelligence‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎
  • Introduction to Cyber Intelligence
  • Attack Tools
  • Attack process
  • Reconnaissance and Footprinting
  • OSINT services and tools
  • Threat and vulnerability feeds and assessments
APPLY NOWDOWNLOAD BROCHURE

Cyber Investigations

Course Details

This course is suitable for investigators and investigation teams within the corporate environment and public sectors who are required to track online trails or utilise tools to solve online crimes. It is also intended for professionals and investigative journalists involved in investigations such as fraud, espionage, data theft, and cyber vetting.

Mode of Offering: The course is presented via facilitated    e-learning, utilising an e-learning platform and virtual classes.

Intended Audience:

This course is designed for investigation officers, cyber-crime investigators, investigative journalists, etc.

Requirements

Applicants should have a Matric certificate or equivalent qualification. Although a formal IT qualification or certification is not required, some knowledge of computer systems would be beneficial. Internet access and a PC or laptop on which applications can be installed and services accessed are required.

Costs:

R12,500 all inclusive

Duration:

5-months

Intake:

Applications are accepted throughout the year, with course starting dates in February, May, and August.

Course Overview:
  • Reconnaissance
  • Online services and tools
  • Metadata Encryption & Decryption
  • Digital signatures
  • Online investigations
  • Crime Scene Management
  • Documenting evidence
  • Investigation Process
  • Chain of Evidence
  • Protocols and emails
  • URLs & DNS information
  • Timelines
  • Decryption and deciphering
  • Virtual Currencies
  • Cyber criminology
  • Introduction to the attack process
  • Introduction to attack vectors
  • Social networks (i.e., attacks via Facebook, Twitter, etc.)
  • Dark and hidden web
  • Threat actors
  • Data Collection
  • Social Media
  • OSINT
  • HUMINT
  • SOCMINT
APPLY NOWDOWNLOAD BROCHURE

Cyber Intelligence

Course Details

The main objective is to equip delegates with the necessary competencies and practical skills to assist in compiling an intelligence-driven cyber security strategy to provide proactive solutions to a plethora of cyber threats.

Mode of Offering: The course is presented via facilitated        e-learning, utilising an e-learning platform and virtual classes.

Intended Audience:

This course is designed for persons responsible for the security function, CISOs, as well as Data Protection Officers.

Requirements

Applicants should have a Matric certificate or equivalent qualification. Although a formal IT qualification or certification is not required, some knowledge of computer systems would be beneficial. Internet access and a PC or laptop on which applications can be installed and services accessed are required.

Costs:

R12,500 all inclusive

Duration:

5-months

Intake:

Applications are accepted throughout the year, with course starting dates in February, May, and August.

Course Overview:
  • Cyber Security Environment
  • Cyber Landscape
  • Cyber Threats and Exploits
  • Cyber Actors and Criminology Aspects
  • Obtaining Data
  • Sources of Data
  • Collection Operations
  • Applications, Tools, and Services
  • Analysis of Cybercriminals’ Modus Operandi
  • Analysis Techniques (Data to Information)
  • Indicators of Compromise
  • Cyber Intelligence
  • Intelligence Platforms, Applications, and Services
  • Data – Information – Intelligence
  • Intelligence Strategy
  • Incident Management
  • Cyber Warfare
  • Political and Commercial
  • Developing an Intelligence-Driven Strategy
  • Strategic and Tactical Intelligence Function
  • Risk Management
APPLY NOWDOWNLOAD BROCHURE

Cyber Governance

Course Details

Establishing a security strategy and defining a suitable implementation plan focused on managing cyber risks in a volatile and dynamic environment requires a solid understanding of the threat space and frameworks. This course unpacks cyber governance and approaches to manage risk and adhere to compliance regulations.

Mode of Offering: The course is presented via facilitated    e-learning, utilising an e-learning platform and virtual classes.

Intended Audience:

This course is designed for Managers and C-Suites responsible for security, Board members, as well as prospective leaders in the Cyber Security space.

Requirements

Applicants should have a Matric certificate or equivalent qualification. Although a formal IT qualification or certification is not required, some knowledge of computer systems would be beneficial. Internet access and a PC or laptop on which applications can be installed and services accessed are required.

Costs:

R12,500 all inclusive

Duration:

5-months

Intake:

Applications are accepted throughout the year, with course starting dates in February, May, and August.

Course Overview:
  • Security Management Program
  • Cyber-crime
  • Threat Environment
  • Cyber Criminology
  • Regulations – GDPR, POPI, Electronic Act, PCI-DSS
  • Skills Frameworks
  • Cyber Awareness Programs
  • Risk management
  • Controls – Choice, Implementation, and Management
  • Security Frameworks and Models
  • Policies and Procedures
  • Data Protection
  • The road to ISO 27001 Compliance and Certification
APPLY NOWDOWNLOAD BROCHURE

IT and Cyber Security Program

Course Details

Our courses combine essentials from both industry and academia to provide valid, unique, practical content that is innovatively presented via facilitated e-learning.

The IT and Cyber Security Program is a practical course consisting of coursework, virtual classes, and practical cyber range exercises.

Mode of Offering: Learning will be conducted through a facilitated online format, utilising an e-learning platform to provide an interactive and engaging educational experience. Additionally, hands-on practical sessions and virtual labs will be conducted every Friday from 9:00 AM to 12:00 PM, offering participants the opportunity to apply theoretical knowledge in a real-world context. This blend of online facilitated learning and scheduled virtual sessions aims to create a comprehensive and dynamic learning environment, ensuring a well-rounded educational experience for participants.

Intended Audience:

This course is designed for school leavers, those on a gap year, graduates looking to add industry credentials, and individuals looking to make a career change.

Requirements

Applicants should have a Matric certificate or equivalent qualification. Internet access and a PC or laptop on which applications can be installed and services accessed are required.

Costs:

R 31,350 all inclusive

Duration:

12-months

Intake:

25 February 2026

Course Overview:
IT Foundation for Cyber Security
  • IT Hardware Fundamentals
  • Network Fundamentals
  • Introduction to Operating Systems (Windows and Linux) 
  • Introduction to Cloud Computing (Office 365 and MS Azure) 
  • Protocols 
  • Technical Research and Writing
  • Algorithms and Problem Solving
  • File and Database Systems
  • Scripting
  • New Technologies: AI and Quantum Computing
  • Soft Skills
Certificate in Cyber Security
  • Cyber Security Fundamentals 
  • The Cybercrime Eco-System
  • Actors in Cyber Space – State and Non-State Actors
  • Cyber Incidents: Attacks, Breaches, and Espionage
  • Understanding Tactics, Techniques, and Procedures (TTPs) using the Mitre Attack Framework
  • Cryptography (Symmetric/Asymmetric/Hashes)
  • Secure Protocols
  • Reconnaissance and OSINT (Open-Source Intelligence)
  • Cyber Security Frameworks and Standards: Introduction to the NIST CS Framework and ISO 27000 Series
  • Cyber Risk Management, Cyber Governance, and the Implementation of Security Controls
Facilitated online course with virtual classes, and practical training and skills development on the cyber range platform.
APPLY NOWDOWNLOAD BROCHURE