Key Takeaways
1. A malware-infected game called PirateFi was found on Steam, linked to a demo for Sniper: Phantom’s Resolution.
2. Valve removed the game from the Steam Store but it remains visible on the website with limited information about its developers.
3. The malware discovered aims to steal sensitive data and bypass Windows security, with one antivirus failing to detect it.
4. Gamers who downloaded the demo are advised to change their passwords and monitor their accounts for suspicious activity.
5. The incident highlights ongoing challenges for Valve in maintaining a secure platform, especially with external links and support for smaller studios.
Last month, Steam found itself in hot water when a malware-ridden game called PirateFi appeared on its platform. Recently, a player discovered an infected demo linked to the Sniper: Phantom’s Resolution page on Steam. In this case, Valve did not host any harmful file. Instead, the user spotted a dubious external site that only provided a demo link. Users on Reddit looked into it and uncovered signs of malware in the download.
Valve’s Response
After receiving several complaints, Valve took the game down from the Steam Store. However, Sniper: Phantom’s Resolution is still visible on Steam’s website. This title appears to be a standard first-person shooter created by Sierrasixstudios, which has no available information about its creators. While there’s no conclusive evidence, gamers are suggesting that the developer might be using stolen or fake screenshots.
Malware Investigation
While exploring the demo, a Reddit user found a standard Unity game folder layout. Nevertheless, some files attempting to circumvent Windows security were present in the folders. The malware also seems to open a browser window, potentially leading to cookie hijacking. The ultimate aim appears to be stealing sensitive data from users’ computers. One popular antivirus program failed to identify issues during a malware scan. Any gamer who attempted to install this demo should consider changing their passwords and keeping an eye on their accounts for any unusual activity.
Ongoing Challenges for Valve
The recent Sniper: Phantom’s Resolution incident underscores the challenges Valve faces in ensuring Steam is a secure environment for gamers. Allowing external links has always posed a risk. Last summer, Steam introduced stricter rules for linking to websites and social media. Unfortunately, these regulations do not apply to the official links section, which is often used to advertise a game’s official website or its publisher.
Valve aims to support smaller studios by simplifying the game submission process. However, this also leaves room for hackers to exploit Steam pages of unknown developers, putting unsuspecting players at risk.
Source:
Link
