Steam game store exploited to push malware—twice in 2 months
Posted on
by
Joshua Long
For the second time in two months, threat actors exploited Steam to promote Trojan malware masquerading as video games. Steam is a very popular Mac and PC game distribution platform operated by Valve Corporation.
In February, Valve removed a game called “PirateFi” from its Steam store after reports that it contained infostealer malware. We briefly discussed this on the February 20 episode of the Intego Mac Podcast.
Late this week, Valve removed a second game listing from its store, “Sniper: Phantom’s Resolution.” The developer had previously posted a statement on Steam on Wednesday, warning that the game would only be distributed through Steam itself. Ironically, the developer’s own site—linked from the game’s Steam store page—promoted an off-Steam downloadable demo. According to user reports, the “demo” was allegedly a Trojan horse that installed stealer malware.
Key takeaway: Always be cautious; don’t blindly trust app stores
While both of these cases involved Windows malware, there’s an important lesson here for Mac, iPhone, and Android users, too. These “games” were available through a popular store, and they may have seemed legitimate to a casual user. The developers could have just as easily offered Mac versions of their info-stealer Trojans, too.
In fact, even Apple’s own App Store isn’t entirely trustworthy. One independent researcher maintains a list of hundreds of fraudulent apps that Apple hasn’t removed from the App Store.
No matter where you get your apps, never assume that a store (or search engine) has fully vetted a developer or its software. Surprisingly often, malware and potentially dangerous programs slip past app-store reviewers. It’s better to be safe than sorry. Therefore, it’s wise to use additional layers of protection, such as a trusted antivirus solution.
Intego can protect your Mac or PC from infostealer malware
Intego VirusBarrier X9, included with Intego’s Mac Premium Bundle X9, is a powerful solution designed to protect against, detect, and eliminate Mac malware—including but not limited to infostealers.
If you believe your Mac may be infected, or to prevent future infections, it’s best to use antivirus software from a trusted Mac developer. VirusBarrier is antivirus software that has won numerous awards, and it is designed by Mac security experts. Its real-time scanning provides the continuous protection that your Mac needs. VirusBarrier runs natively on both Intel- and Apple silicon-based Macs, and it’s compatible with Apple’s latest Mac operating system, macOS Sequoia.
One of VirusBarrier’s unique features is that it can scan for malicious files on an iPhone, iPad, or iPod touch in user-accessible areas of the device. To get started, just attach your iOS or iPadOS device to your Mac via a USB cable and open VirusBarrier.
Windows PC users can also use Intego Antivirus for Windows to keep their computer protected from malware.
How can I learn more?
Each week on the Intego Mac Podcast, Intego’s Mac security experts discuss the latest Apple news, including security and privacy stories, and offer practical advice on getting the most out of your Apple devices. Be sure to follow the podcast to make sure you don’t miss any episodes.
You can also subscribe to our e-mail newsletter and keep an eye here on The Mac Security Blog for the latest Apple security and privacy news. And don’t forget to follow Intego on your favorite social media channels: 
