Malicious Malware Broadcasted Through Twitch
Jeremy Tate / 10 years ago
Some rotten news for Steam users – a fresh breed of malware has sprouted that targets users Steam Wallets through the popular online broadcasting platform Twitch. The malware codenamed ‘Eskimo’ is spread through malicious links spammed by bots via popular Twitch chat channels. When clicked, users are redirected to a malware laden Javascript page that asks for users to input their personal email in order to enter a raffle. Entering in your details compromises your Steam account to the attackers, who then proceed to remotely empty your accounts items and Steam Wallet funds.
A Twitch user who recognised the malicious work at hand reported it to Finnish Digital Security Firm ‘F-Secure’. F-Secure have since been investigating the malware, saying:
“This malware, which we call Eskimo, is able to wipe your Steam wallet, armory, and inventory dry,” says F-Secure. “It even dumps your items for a discount in the Steam Community Market. Previous variants were selling items with a 12 percent discount, but a recent sample showed that they changed it to 35 percent discount. Perhaps to be able to sell the items faster.”
“It might be helpful for the users if Steam were to add another security check for those trading several items to a newly added friend and for selling items in the market with a low price based on a certain threshold. This will lessen the damages done by this kind of threat.”
For the time being – we recommend as always to be on alert for malicious software and shady unauthorised links. Never hand out your Steam password, email or login credentials to anyone.
Thank you Newsmaine for providing us with this information
Images courtesy of Twitch.