Steam Logo.jpg

Steam Stealers is the blanket name given to malware specifically targeting users of the popular gaming platform, Steam.

The wide variety of open-source APIs for the Steam platform has led to an oversaturation of hacking tools that abuse these libraries in order to steal account credentials.

Researchers have noted the low asking prices for access to these hacking tools, with the rights to some credential stealers being sold for as little as $3.

The often simple malware is usually spread through fake websites that mirror legitimate gaming websites, as well as through links sent through Steam's messaging system. It has also been seen being packaged in binaries with popular gaming programs like TeamSpeak and RazerComms.

In-game items are also targets for these types of malware. Users on betting websites for the popular video game Counter-Strike: Global Offensive were targeted by fake Google Chrome extensions that would rob them of their in-game items, which can reach thousands of dollars each.

Enabling the TSCritical targets in your user policy will add protection against Steam Stealers to your ThreatSTOP DNS and IP Firewall Services. If you do not have a ThreatSTOP account click the button to try a demo.

Get Started