Security Breach Uncovered in Pre-Release Game
A recent investigation by cybersecurity firm Prodaft has unveiled a serious security breach concerning a pre-release game available on the major PC gaming platform, Steam. The survival title, named Chemia and crafted by Aether Forge Studios, was reportedly embedded with multiple forms of malware by a cybercriminal group known as EncryptHub, also referred to as Larva-208. The infestation, which took place on July 22, involved three distinct malware variants: Hijack Loader, Fickle Stealer, and Vidar Stealer.
Malware Details and Impact
Hijack Loader enables perpetrators to deploy harmful programs that violate users’ privacy, while Fickle Stealer and Vidar Stealer are specifically designed to compromise cryptocurrency wallets and extract sensitive data from web browsers, password management tools, and other applications. The findings were first reported by tech publication Bleeping Computer.
Steam’s Response
In response to the alarming situation, Steam has seemingly removed Chemia from its online store, with users attempting to access the game now redirected to the Steam homepage. However, enquiries made to Steam regarding the game’s removal went unanswered.
Context of the Incident
Chemia had been introduced through Steam’s Early Access program, which allows gamers to download titles still in development, potentially plagued by bugs or incomplete features. Prodaft noted that the malware likely interacted with a Telegram channel used by the hackers for managing the harmful software to steal data and orchestrate attacks.
Growing Cybersecurity Concerns
This incident occurs against a backdrop of increasing cyberattack incidents worldwide, where malware infections have surged by 87% over the last decade, according to Statista. Additionally, Cybersecurity Ventures projects that cybercrime will generate damages amounting to $10.5 trillion by 2025, a noticeable leap from $3 trillion in 2015.
Previous Incidents and Future Implications
Last year, EncryptHub was involved in a spear-phishing and social engineering scheme utilizing the same malware that affected over 600 organizations. Steam has faced scrutiny in the past for allowing malware-ridden titles to slip through its Early Access program. Notably, just a few months prior to the Chemia incident, malicious software was discovered in the game Sniper: Phantom’s Resolution, while another title, PirateFi, was flagged for containing Windows-based malware that could extract private information from its users.
As the number of malware cases grows, the effectiveness of Steam’s vetting process for Early Access games remains in question. Further commentary about their security measures has yet to be provided from Steam.
