Whereas app shops are inclined to succumb to malware occasionally, Steam’s fame has been comparatively squeaky clear. Sadly, that modified after a sport on the storefront turned out to be a malicious app in disguise.
A Free-to-Play Pirate Recreation on Steam Was Malware in Disguise
As PCMag reported, a malicious actor uploaded a title referred to as PirateFi onto the Steam platform. The PirateFi retailer web page described the sport as a sandbox pirate sport that was free to play, which was possible a ploy to get as many downloads as doable.
As soon as folks downloaded the sport, it deployed a Trojan named “Trojan.Win32.Lazzzy.gen.” This malware’s principal purpose is to dig via browser cookies and steal login particulars. As soon as folks recognized PirateFi as malware, they warned Valve, which eliminated the sport and despatched out a message to anybody affected.
Sadly, the Trojan caught round lengthy sufficient to do some critical injury to folks’s accounts. As detailed on the Steam dialogue board for PirateFi, one sufferer noticed their account compromised and used to buy Dota 2 skins.
One other particular person claimed the cybercriminals hacked their Microsoft account and blocked Microsoft Help. They then accessed the sufferer’s Roblox account, stole $20, and despatched a message to all of their associates containing a rip-off hyperlink.
If you wish to keep away from having your accounts stolen, watch out what you obtain from the Steam retailer. Whereas Steam is normally excellent at catching virus uploads, you are able to do your half by staying away from new releases which are free-to-play and “appear off” by some means. For instance, PirateFi used stolen belongings from different video games in its promoting, which is an enormous pink flag. It’s also possible to stop Steam phishing by performing some greatest practices.
