FBI Investigates Malware-Laced Video Games on Steam, Seeks Victims

Posted: 7:55 AM PDT · March 13, 2026

The Federal Bureau of Investigation (FBI) has launched an investigation into a sophisticated cybercriminal suspected of distributing multiple video games embedded with malicious software on Steam, one of the world’s largest digital distribution platforms for PC gaming. The agency announced its inquiry on Friday, actively seeking individuals who may have fallen victim to these malware-laced titles. This development highlights the persistent threat posed by cybercriminals leveraging popular platforms to target unsuspecting users, underscoring the critical need for vigilance within the vast gaming community.

According to the FBI’s official announcement, which included a dedicated form for potential victims, the agency has identified a series of games believed to have been developed and published by the same malicious actor over the past two years. These titles, hosted on the Valve-owned Steam store, were designed to function as Trojan horses, camouflaging harmful malware within seemingly legitimate gaming experiences. The games currently under suspicion and listed by the FBI include BlockBlasters, Chemia, Dashverse/DashFPS, Lampy, Lunara, PirateFi, and Tokenova. A screenshot of "PirateFi," one of the identified malware-laced video games, was released, with image credits attributed to Valve.

The malicious software embedded within these games is strongly suspected to be an infostealer, a type of malware designed to illicitly collect sensitive information from a victim’s computer. Infostealers typically target a wide array of personal data, including login credentials for various online services (such as banking platforms, email accounts, and social media), cryptocurrency wallet keys, browser histories, saved credit card details, and even documents stored on the device. Once exfiltrated, this data can be used for identity theft, financial fraud, account hijacking, or sold on dark web marketplaces, leading to severe and far-reaching consequences for the affected individuals. The "Trojan horse" method employed by these malicious games is particularly insidious, as it exploits the trust users place in official platforms like Steam and the natural desire for new gaming content. Users download what they believe to be an enjoyable game, only to unwittingly install sophisticated surveillance or data-theft tools onto their systems.

This incident is not an isolated occurrence but rather part of an alarming trend that has seen hackers repeatedly exploit the Steam marketplace for malware distribution. Just last year, Valve, the company behind Steam, was compelled to remove several games from its platform after they were found to contain malware. Reports from February and March of 2025 detailed these prior instances, describing how these games, while functional to a basic degree, primarily served as conduits for malware. The developers’ true intent was not to provide entertainment but to trick gamers into installing malicious payloads on their computers. Despite Steam’s prompt action in removing the offending titles, an indeterminate number of users were unfortunately infected before the threats were fully neutralized. This pattern of behavior suggests a deliberate and ongoing effort by cybercriminals to penetrate and exploit the Steam ecosystem.

Steam, with its immense global user base and vast library of titles, presents an attractive target for cybercriminals seeking to maximize their reach. The platform hosts tens of thousands of games and regularly sees millions of concurrent users, making it a fertile ground for large-scale malware distribution campaigns. While Valve employs various security measures and content review processes for games submitted to its store, sophisticated attackers continually seek new ways to circumvent these safeguards. This can involve submitting seemingly innocuous games that later receive malicious updates, or using highly obfuscated code that evades initial automated detection. The challenge for platform operators like Valve lies in balancing open access for developers with rigorous security vetting, especially given the sheer volume of new content constantly being added. The reputation of the platform and the trust of its users are directly impacted by such security breaches, necessitating continuous investment in advanced threat detection and rapid response capabilities.

The FBI’s decision to publicly announce its investigation and solicit victim information underscores the gravity of the situation. Such public appeals are crucial for law enforcement agencies to gather intelligence, understand the full scope of an attack, identify specific malware strains, and ultimately build a robust case against the perpetrators. For victims, providing information can be a vital step towards recovery and can contribute to preventing future attacks. The agency’s request for information is a clear indicator that the investigation is ongoing and aims to apprehend the individual or group responsible for these cybercrimes.

Victims of infostealer malware can face a multitude of serious consequences. Beyond the immediate compromise of digital accounts, they may experience financial losses due to unauthorized transactions, suffer damage to their credit scores, or even have their identities stolen. The emotional toll can also be significant, as victims grapple with the violation of their privacy and the stress of regaining control over their digital lives. To mitigate risks, gamers are strongly advised to practice robust cybersecurity hygiene. This includes using strong, unique passwords for all accounts, enabling two-factor authentication (2FA) wherever possible, and exercising caution when downloading games from unfamiliar developers, even if they appear on official platforms. Regularly updating operating systems and antivirus software, and being wary of unexpected performance issues or unusual network activity on their devices, can also help users detect and prevent malware infections.

As part of the ongoing investigation, both Valve and the FBI were contacted for comments regarding the incident but did not respond to requests. This is a common occurrence in active investigations, where law enforcement agencies and involved companies often refrain from making public statements to avoid jeopardizing the integrity of the inquiry or to comply with legal protocols.

Individuals who believe they may have been affected by these malware-laden video games, or who possess additional information pertinent to the investigation, are encouraged to come forward. For those wishing to provide tips securely, TechCrunch reporter Lorenzo Franceschi-Bicchierai can be contacted via Signal at +1 917 257 1382, or through Telegram and Keybase under the handle @lorenzofb. Secure communication is paramount to protect sources and sensitive information during such investigations. Additionally, tips can be sent via email to [email protected] or through TechCrunch’s SecureDrop platform, which offers an anonymous and highly secure method for sharing information with journalists. The collaborative effort between law enforcement, cybersecurity experts, and the public is often essential in combating sophisticated cyber threats and holding perpetrators accountable. The continuous evolution of cybercrime tactics necessitates an equally adaptive and vigilant response from all stakeholders in the digital ecosystem.