A malicious game on Steam’s platform has raised significant security concerns in the gaming community. PirateFi, a free-to-play survival game released by Seaworth Interactive, was found to contain the dangerous Vidar infostealer malware during its brief presence on Steam from February 6th to February 12th.

Security Impact and Scope:
– Up to 1,500 users potentially affected
– Malware identified as Vidar infostealer
– Targeted sensitive data including credentials, cookies, and cryptocurrency wallets

Steam’s Response:
– Immediate removal of the game from the store
– Notifications sent to affected users
– Recommendations for complete Windows reinstallation
– Implementation of security scans

Technical Analysis:
Security researcher Marius Genheimer of SECUINFRA Falcon Team confirmed:
– Malware was hidden in “Pirate.exe” with a payload named “Howard.exe”
– Used InnoSetup installer for packaging
– Multiple modifications to evade detection
– Changing command-and-control servers for data exfiltration

Recommended User Actions:
1. Perform full system antivirus scan
2. Change all passwords
3. Enable multi-factor authentication
4. Check for unauthorized software
5. Consider complete OS reinstallation

This incident highlights ongoing security challenges in digital distribution platforms, despite Steam’s protective measures like SMS verification for updates. It follows similar security breaches involving Dota 2 game modes and Slay the Spire modifications in recent years.