Tips for protecting yourself from hacker threats through modifications in games.
The Slay the Spire gaming community is facing a serious security threat. Hackers attacked the popular Downfall mod, using it to distribute malicious software (software) through the Steam gaming platform. This virus was designed to steal player passwords, including data stored in Internet browsers and popular instant messengers such as Telegram and Discord.
The first sign of a problem for players was the appearance of a pop-up window of the Unity installer when launching a mod during its infection. The mod developers quickly responded and at approximately 1:40 am ET on the day of the attack, the hacker attack was canceled. It was noted that most antivirus programs failed to prevent the malware from running, but they successfully blocked the transmission of stolen data to the Internet, which could limit the damage to victims.
Hackers carefully searched for valuable credentials, targeting a wide range of information, including local Windows accounts and data from various browsers such as Google Chrome, Microsoft Edge, Mozilla Firefox, as well as privacy-focused browsers such as Brave and Vivaldi. The list also included Telegram and Discord accounts, as well as searches for any files with the word 'password'in their name.
Users who noticed the malware reported that it created files in various locations on their hard drives. The mod developers recommended checking suspicious files by disconnecting from the Internet to prevent data transmission to malware during the investigation. In light of the serious compromise, the developers of Downfall called on players who encountered the Unity popup to change their "important passwords", especially those that are not protected by two-factor authentication (2FA).
This incident with the Downfall mod is a reminder of the risks associated with online games, where third-party modifications are widely used. Despite their role in enriching the gameplay, these modifications carry risks, as they can be used as channels for cyber attacks. Players are encouraged to be vigilant and proactive in keeping their accounts secure, especially by enabling two-factor authentication where possible.
The Slay the Spire gaming community is facing a serious security threat. Hackers attacked the popular Downfall mod, using it to distribute malicious software (software) through the Steam gaming platform. This virus was designed to steal player passwords, including data stored in Internet browsers and popular instant messengers such as Telegram and Discord.
The first sign of a problem for players was the appearance of a pop-up window of the Unity installer when launching a mod during its infection. The mod developers quickly responded and at approximately 1:40 am ET on the day of the attack, the hacker attack was canceled. It was noted that most antivirus programs failed to prevent the malware from running, but they successfully blocked the transmission of stolen data to the Internet, which could limit the damage to victims.
Hackers carefully searched for valuable credentials, targeting a wide range of information, including local Windows accounts and data from various browsers such as Google Chrome, Microsoft Edge, Mozilla Firefox, as well as privacy-focused browsers such as Brave and Vivaldi. The list also included Telegram and Discord accounts, as well as searches for any files with the word 'password'in their name.
Users who noticed the malware reported that it created files in various locations on their hard drives. The mod developers recommended checking suspicious files by disconnecting from the Internet to prevent data transmission to malware during the investigation. In light of the serious compromise, the developers of Downfall called on players who encountered the Unity popup to change their "important passwords", especially those that are not protected by two-factor authentication (2FA).
This incident with the Downfall mod is a reminder of the risks associated with online games, where third-party modifications are widely used. Despite their role in enriching the gameplay, these modifications carry risks, as they can be used as channels for cyber attacks. Players are encouraged to be vigilant and proactive in keeping their accounts secure, especially by enabling two-factor authentication where possible.
