Listen to this Post
Introduction: When Gaming Turns Into a Cybersecurity Threat
Online gaming platforms have long been seen as places of entertainment, creativity, and community. However, as digital economies grow and cryptocurrency becomes more integrated into online culture, these platforms have also become attractive targets for cybercriminals. In a recent development, the Federal Bureau of Investigation (FBI) has launched an investigation into several malicious games distributed through Valve Corporation’s gaming platform Steam.
Authorities are now actively asking gamers who installed certain titles between May 2024 and January 2026 to come forward. The reason is alarming: these games allegedly carried hidden malware capable of stealing cryptocurrency, hijacking accounts, and extracting sensitive information from victims’ computers.
FBI Seeks Victims of Malware-Embedded Steam Games
The Seattle division of the Federal Bureau of Investigation has issued a public notice asking individuals who downloaded specific games on Steam to provide information as part of an ongoing investigation.
According to the agency, cybercriminals embedded malware into multiple titles distributed on the platform. Authorities believe the threat actors targeted players during a long campaign that lasted from May 2024 through January 2026.
The games identified as potentially malicious include BlockBlasters, Chemia, Dashverse/DashFPS, Lampy, Lunara, PirateFi, and Tokenova. Anyone who installed these titles, or whose family members downloaded them, is encouraged to submit information to help investigators understand the scope of the attack.
The FBI has also emphasized that the investigation aims to identify victims of federal cybercrime. Those who come forward may be eligible for support services, restitution programs, or legal protections under federal and state law. To protect privacy, authorities stated that all victims’ identities will remain confidential.
Cryptocurrency Theft and Account Hijacking
Investigators suspect that the malware embedded in these games primarily targeted cryptocurrency wallets and online accounts. The questionnaire provided by the FBI focuses on several areas that could help trace the criminals’ activities.
Victims are asked about suspicious cryptocurrency transactions, compromised gaming or social media accounts, and any financial losses they may have experienced after installing the games. Additionally, the FBI is requesting screenshots or records of conversations with individuals who promoted the infected titles online.
This information could prove critical. By tracing blockchain transactions and identifying promotional networks used to spread the games, investigators may be able to follow the stolen funds and connect them to the individuals responsible for distributing the malware.
The FBI has also urged people who suspect friends or relatives may have been affected to encourage them to contact investigators via the dedicated reporting email address.
How Malware Was Hidden Inside Steam Games
Cybersecurity researchers have discovered that several of the infected games contained information-stealing malware, designed specifically to extract sensitive data from infected computers. These malicious programs targeted credentials, browser cookies, saved passwords, and cryptocurrency wallet data.
One of the most widely discussed incidents involved BlockBlasters, a free-to-play platform game that appeared legitimate when first published on Steam. The title was available between July and September 2024.
Initially, the game was clean. However, attackers later updated the software with cryptodrainer malware capable of stealing digital assets.
The attack became widely known when Latvian game streamer Raivo Plavnieks, known online as RastalandTV, revealed during a charity livestream that he had lost over $32,000 worth of cryptocurrency after installing the game. The livestream had been organized to raise funds for cancer treatment, making the incident particularly shocking to viewers.
Blockchain investigator ZachXBT later analyzed the attack and estimated that roughly $150,000 had been stolen from 261 Steam users. However, researchers from VX-Underground suggested the number of victims could be even higher, reporting as many as 478 compromised accounts.
Additional Malware Campaigns Through Steam
Other infected titles used different malware techniques. In the survival crafting game Chemia, a threat actor known as EncryptHub reportedly embedded HijackLoader, a malware loader designed to download additional malicious programs.
Once executed, HijackLoader delivered the Vidar information-stealing malware to infected systems. Researchers later discovered that the game also deployed EncryptHub’s custom malware called Fickle Stealer, which targeted login credentials, browser data, cookies, and cryptocurrency wallets.
Another example involved PirateFi, which was briefly available on Steam in February 2025. During its short lifespan of roughly one week, up to 1,500 players may have downloaded the infected game before it was removed.
After discovering the threat, Valve Corporation warned players who had launched PirateFi that malicious files might have executed on their computers. The company recommended several precautionary steps, including running antivirus scans, reviewing installed programs, and potentially reinstalling the operating system.
What Undercode Say:
Gaming Platforms Are Becoming High-Value Cybercrime Targets
The recent investigation highlights a growing trend: cybercriminals increasingly view gaming platforms as fertile ground for large-scale attacks. With millions of users and frequent software updates, platforms like Steam present an attractive distribution channel for malware.
Unlike traditional phishing campaigns, malicious games exploit user trust in official marketplaces. Players often assume that software distributed through a verified platform has been thoroughly vetted. Attackers are leveraging that assumption to deliver sophisticated malware directly to users’ systems.
Another factor increasing the risk is the rise of cryptocurrency within gaming communities. Many gamers participate in blockchain-based economies, NFT trading, or crypto speculation. This makes them ideal targets for attackers seeking digital assets that can be stolen quickly and anonymously.
From a cybersecurity perspective, the attack also demonstrates how modern malware campaigns combine multiple techniques. Threat actors are not simply embedding a single malicious program inside a game. Instead, they deploy loaders, downloaders, and custom information stealers that can adapt over time.
This layered strategy makes detection significantly harder. Even if the original game appears clean during initial platform reviews, attackers can introduce malicious updates later, bypassing security checks.
The BlockBlasters case illustrates this perfectly. By first releasing a legitimate version of the game, attackers built credibility and accumulated downloads. Only after gaining traction did they inject malware into the software, ensuring a larger pool of victims.
Another important element is the role of social promotion. Investigators are specifically asking victims for screenshots of conversations with individuals who promoted the infected games. This suggests that cybercriminals may have used coordinated marketing or influencer-style promotion to spread the titles.
Such tactics blur the line between cybercrime and social engineering. Instead of relying solely on technical exploitation, attackers manipulate community trust and online visibility to expand their reach.
For companies like Valve Corporation, the situation underscores the challenge of maintaining security at scale. With thousands of games submitted to digital marketplaces every year, detecting malicious updates or hidden malware is extremely difficult.
This incident may lead to stricter vetting processes for game updates, stronger malware scanning systems, and possibly behavioral monitoring of applications after they are installed.
The broader lesson for gamers is simple but critical: downloading software from a trusted platform does not guarantee safety. Users must remain vigilant, especially when dealing with free-to-play titles that request unusual permissions or trigger antivirus warnings.
Security practices such as hardware wallet storage for cryptocurrency, multi-factor authentication for gaming accounts, and routine malware scans could significantly reduce the damage caused by similar attacks.
Ultimately, the investigation may reveal a much larger network of cybercriminals exploiting gaming ecosystems. As digital entertainment platforms continue to grow, they may increasingly become frontline battlegrounds in the fight against cybercrime.
Fact Checker Results
✅ The Federal Bureau of Investigation has publicly requested information from victims who installed malware-infected Steam games.
✅ Multiple infected titles distributed through Steam reportedly contained credential-stealing and cryptocurrency-draining malware.
❌ The full number of victims and the identity of the threat actors have not yet been officially confirmed by investigators.
Prediction
🔮 Gaming platforms will introduce stricter security scanning for game updates and developer accounts.
🔮 Cybercriminals may increasingly target digital marketplaces where user trust is high.
🔮 Cryptocurrency theft through gaming malware is likely to become a major cybersecurity trend in the coming years.
🕵️📝✔️Let’s dive deep and fact‑check.
References:
Reported By: www.bleepingcomputer.com
Extra Source Hub (Possible Sources for article):
https://www.medium.com
Wikipedia
OpenAi & Undercode AI
Image Source:
Unsplash
Undercode AI DI v2
Bing
🔐JOIN OUR CYBER WORLD [ CVE News • HackMonitor • UndercodeNews ]
📢 Follow UndercodeNews & Stay Tuned:
𝕏 formerly Twitter 🐦 | @ Threads | 🔗 Linkedin | 🦋BlueSky | 🐘Mastodon
