Technology / Malware steals gamers’ Steam logins to sell for just $15 on the Dark Web

Malware steals gamers’ Steam logins to sell for just $15 on the Dark Web

Researchers have discovered a new form of malware designed to steal gamers' account details for online gaming platform Steam to sell them on the Dark Web.

teenager playing a video game

The malicious software, known as Steam Stealer, is available under a malware-as-a-service arrangement with prices starting at $30, according to experts from Kaspersky Lab.

The stolen Steam account details are then sold for as little as $15 on the Dark Web.

Researchers say the malware, developed by Russian-speaking cyber criminals, is “highly attractive” to wannabe hackers because of its low starting price.

It is distributed either using fake cloned websites or through a social engineering approach with messages sent directly to users, they said.

Once installed, it steals users’ Steam configuration files and locates the Steam KeyValue file for credentials and session data, which give cyber criminals control over the account.

The researchers say they have found nearly 1,200 samples of different Steam Stealers.

“The gaming community has become a highly desirable target for cyber criminals,” said Santiago Pontiroli from Kaspersky Lab’s global research and analysis team. “There has been a clear evolution in the techniques used for infection and propagation, as well as the growing complexity of the malware itself, which has led to an increase in this type of activity.

“With gaming consoles adding more powerful components and the Internet of Things on our doorstep, this scenario looks like one that will continue to play out and become more complex.”

He added that developers should think about security early on when making games and platforms, and that cross-industry collaboration would help to keep the software secure.

Gamers are now a frequent target for cyber criminals and hackers.

In February, users of a forum for zombie survival game DayZ were told to change their passwords after attackers managed to steal members’ information.

December saw another potential gaming website attack when Nexus Mods urged users to change their passwords, although it was unclear over whether there had been a breach.

And security experts issued a warning to Hearthstone players last month after they discovered that many cheating tools for the game came with data-stealing malware.

For more on Steam Stealers, see the Kaspersky Lab website.



Get our latest features in your inbox

Join our community of business leaders