A free-to-play PC game called PirateFi was published on Steam earlier this week and has since been revealed as a malware program. The game, which is designed to steal browser cookies and hijack online accounts, was detected by users when their antivirus software flagged it as carrying “Trojan.Win32.Lazzzy.gen”.
When launched, the virus unpacks into temporary files and appears to look for legitimate login credentials to gain unauthorized access to various online accounts. According to Steam users, many of them have reported having their accounts hacked and passwords changed.
One user had their Microsoft account stolen and reported that “Microsoft support was blocked from their emails” while another experienced financial losses after the malware took control of their Roblox account and sent scam links to friends.
The malicious game appears to be a copycat version of a different game called Easy Survival RPG, with screenshots taken directly from it. Valve has since warned affected users to run a full system scan using an antivirus product and inspect their systems for unexpected software.
It is unclear how the malware made it onto Steam’s platform, but the company’s message urges users to reinstall their Windows OS to ensure the infection is fully removed. According to estimates, over 800 users may have been infected with the PirateFi game.
Source: https://uk.pcmag.com/security/156674/did-you-download-this-steam-game-sorry-its-windows-malware