25.02.2025 19:16:00
Дата публикации
A malicious game called PirateFi was discovered on Steam, designed to steal user data. Valve, the owner and developer of Steam, has already removed the game from the store, but experts warn that the threat is widespread.
Researchers found that the game used a modified version of the existing Easy Survival RPG template, which allows easy creation of gaming projects. Hackers embedded the Vidar virus into the game, which specializes in data theft.
Vidar is a powerful infostealer, capable of stealing passwords, browser autofill data, files from devices, and even two-factor authentication codes. It can also track browsing history and steal cryptocurrency wallet credentials.
Cybersecurity specialist Marius Genheimer from SECUINFRA Falcon Team noted that PirateFi was never a real game but merely a tool for spreading malware.
Investigators found several samples of the malicious code. One was uploaded by a Russian user to the VirusTotal platform. Other copies were detected through SteamDB and threat intelligence databases.
Vidar has previously been used in attacks on Booking.com, malware advertising campaigns, and ransomware deployment operations. In 2024, it was ranked among the most successful infostealers.
This type of malware is sold as a "malware-as-a-service" model, making it accessible even to amateur hackers. This makes tracking down PirateFi’s developers more difficult.
The game was supposedly released by a company called Seaworth Interactive, but it has no online presence. The only known account linked to PirateFi on X (Twitter) was deleted after the scandal.
Valve has not provided any comments on the incident, but the presence of such threats raises concerns among gamers and cybersecurity specialists.
(This translation was generated automatically.)
