-
An investigation by the FBI has determined that there was malware distribution as part of a coordinated campaign amongst people who use the Steam game platform.
-
Malware is circulating via file-sharing sites by disguising itself as legitimate images or software programs within the online gaming community.
-
Authorities are asking possible victims to report incidents to help investigators track the attack and identify those responsible.
The Federal Bureau of Investigation (FBI) has issued an alert regarding a malware scheme targeting Steam gaming platform users, after detectives discovered that the malware had infected players’ PCs and may have stolen personal identifying information.
According to the Seattle Division of the FBI, this campaign distributed harmful files via gaming communities associated with the Steam platform. The authorities believed that the malicious conduct had lasted for almost two years. In addition, the FBI is encouraging anyone who believes the malware impacted them to utilize their Victims’ Assistance Page to report the incident.
Steam is a vast worldwide digital gaming platform with millions of players and numerous downloadable games available for purchase. Since there are many game modifications, tools, and updates users share within the community, many cybersecurity experts say that cybercriminals use this community to exploit users by providing malicious malware disguised as a legitimate download.
Malware Hidden in Game-Related Files
Cybersecurity researchers and game data trackers, such as SteamDB, have aided in uncovering suspicious activity associated with malware campaigns. From their cybersecurity monitoring sources, they issued alerts indicating some of the files spreading amongst gaming communities were infected with malware.
Investigators stated attackers are disguising malware as malicious gaming tools. Once an individual downloads and installs the file without knowing they are also installing the malware, the malware infects their system. Malware infections allow cybercriminals to obtain login credentials, access users’ files, and install additional harmful software.
According to the Cybersecurity & Infrastructure Security Agency’s guidance, the use of infected downloads and deceptive links is one method of spreading malware, which cybercriminals always utilize.
This tactic is especially popular among cybercriminals due to the fact that the majority of gamers frequently download Mods or Add-ons, tools that enhance gameplay. Therefore, cybercriminals can use gamers’ download habits as a means of tricking users into installing infected software.
FBI Investigation Seeks Information from Victims
To understand the full extent of this attack, the FBI is currently gathering evidence from individuals who may have been victims – the agency is requesting detailed reports from potential victims. Investigators encourage individuals who downloaded suspicious Steam content to provide this information to law enforcement.
Also, law enforcement investigators believe that the reporting evidence of victims may assist authorities with identifying the methods of malware delivery and any specific groups associated with cybercriminal activities. Investigators are currently attempting to gather additional information to identify any trends or other items that can identify those responsible for the cybercrime.
Reports on various online community sites have indicated concern about the continued spread of malware, frequently citing Reddit as an example of this. Some Reddit users have reported seeing suspicious content regarding warning signs or posts that indicate the possibility of the spread of suspicious content via gaming forums and prompting users to check their systems for malware or other nefarious acts.
Due to the increase in global cooperation by all levels of law enforcement, the authorities will rely heavily on public cooperation when conducting cybercrime investigations. In many instances, victims’ reports provide the initial evidence from which law enforcement can follow an attack from a single point of origin in one country to another across the globe.
Growing Cybersecurity Risks for Gaming Communities
As stated by the FBI, online gaming platforms are at risk of cybersecurity breaches as millions of players worldwide are interacting through them on a daily basis. The constant contact of these vast users makes it attractive and simple for many individuals to try to take advantage of the gaming community through different types of malware or as a way of taking control of their gaming accounts.
Experts recommend some basic steps to reduce the risk of infection – gamers downloading files only from trusted sources, updating their systems on latest security patches, and using antivirus software to scan any file before opening it. Also, the professionals advise players to enable two-factor authentication on their gaming accounts to protect against unauthorized access.
Though online gaming continues to be a popular form of entertainment throughout the world, cybersecurity experts advise that, due to the risk of infection when downloading files from gaming communities, players should remain vigilant when downloading any files from a community source.
The investigation into the Steam malware incident by the FBI shows that even trusted internet gaming networks are at risk of an attack by an individual trying to gain access to a large number of users through an internet gaming attack.
