A recent hacking event has resulted in the Downfall mod for the well-known game Slay the Spire spreading malware to players via Steam. A lot of people play the popular deck-building game Slay the Spire, which was published in 2017. It has a large player population and a lot of mods, so anyone who played Downfall might have been impacted by this security flaw.
One of the best Slay the Spire mods out there, Downfall was released two years ago as a “free expansion” on Steam and includes a whole campaign with a different plot, seven new characters, and more content for die-hard fans.
In a Steam post, the Downfall mod’s creators revealed a security flaw that meant their work was compromised over the holiday season. A harmful file was added to the mod by an unauthorized person, and it was live for about an hour. Members of the crew had their Steam and Discord accounts hijacked, which made it difficult for them to quickly notify the community. A Unity library popup would appear when the compromised Slay the Spire mod was opened, and the malware would then try to steal user passwords from browsers or services like Telegram and Discord.
The creators of the mod claim that although the majority of antivirus software wouldn’t stop the malware from being executed, it would stop hackers from getting password information. It is recommended that users who see this window update all of their passwords, turn on two-factor authentication, and avoid clicking on dangerous files online. People who are not impacted can relax because the Downfall has been fixed, meaning the security flaw has been removed.
In October, Valve implemented a new authentication method to strengthen Steam’s security in response to problems similar to this occurrence. The intention behind requiring developers to always utilize two-factor authentication was to lessen the possibility of malicious updates and hackers. It’s unknown how hackers managed to get past this security precaution and access the mod creators’ accounts.
Unfortunately, breaches similar to the one that occurred in the gaming industry are not unusual, especially in projects like mods that sometimes have weak security safeguards and require big development teams. Similar incidents happened in June when ransomware infiltrated a number of Minecraft mods, including Better Minecraft, Dungeons Arise, Sky Villages, Dunigeonz, Display Entity Editor, Haven Elytra, and others.
Read also:
- Is Minecraft Cross-Platform in 2023? [PC, PS4, Xbox, PS5]
- How to Spawn the Wither in Minecraft
- How To Fix “Minecraft OpenGL Error 1281”
- Minecraft Legends PvP – Designed To Embrace Chaos and Fun
Abdul Wahab
Abdul Wahab is a Software Engineer by profession and a Tech geek by nature. Having been associated with the tech industry for the last five years, he has covered a wide range of Tech topics and produced well-researched and engaging content. You will mostly find him reviewing tech products and writing blog posts. Binge-watching tech reviews and endlessly reading tech blogs are his favorite hobbies.