Cybercriminals disguised a game on Steam, called PirateFI, with malicious software to steal sensitive information from unsuspecting gamers. Security researchers uncovered the malware’s operation after the game’s removal from Steam.
The malware, Vidar, was implanted by modifying an existing game template, allowing the hackers to distribute the malware easily. Vidar is a notorious infostealing tool capable of pilfering passwords, session cookies, web browsing history, cryptocurrency wallet details, and more.
Researchers believe PirateFI was merely one of many tactics used to spread Vidar. Genheimer, a researcher from Falcon Team, stated, “We suspect that it never was a legitimate game that was altered after publication.”
Vidar has been implicated in various hacking campaigns, including attacks on Booking.com and efforts to deploy ransomware. The malware is notorious for its wide adoption by cybercriminals, making it challenging to identify the individuals responsible for the PirateFI incident.
Valve, the operator of Steam, has not responded to inquiries regarding the malware. Seaworth Interactive, the purported developers of PirateFI, has no discernible online presence. The game’s account on Steam, which included a link to the game, has also been removed.
Gamers are urged to exercise caution when downloading games from unknown sources. Malware can often be disguised as legitimate software, making it crucial to verify the source and legitimacy of any game before installation.
Original source: Read the full article on TechCrunch
