Be very careful! An extremely popular mod on Steam has turned into malware

Gaming News Be very careful! An extremely popular mod on Steam has turned into malware

Published on January 1, 2024 at 6:05 p.m

Just like the presents under the Christmas tree, some Christmas presents are not very pleasant. This is the case of the Slay the Spire players who may have been infected with malware in recent days due to the hack of a very popular mod.

If you have this Slay the Spire mod, you may have malware

Although it certainly didn’t have the success of the big AAAs, Kill the tower

is still an extremely popular independent game in the PC gaming community (and even a certain number of console gamers). This 97% recommended card game on Steam, which combines deckbuilding and roguelite, is particularly appreciated by fans of the genre and even benefits from a wide range of mods created by the community. Unfortunately, one of them was recently hacked and spread password-stealing malware on many computers.

Be very careful! An extremely popular mod on Steam has turned into malware

If you have downloaded this Mod doom (which is considered a true free expansion by the Slay the Spire gaming community as it adds content) and you played the game just after Christmas, you may be affected by the issue. As a matter of fact, The team behind the mod was hacked around December 25th and malware sneaked into the game files.

Players who started the infected game should normally see a Unity library window open open, thanks to which the malware could try to restore some of them Passwords for other applications such as Discord or Telegram.

What to do if you are affected and the malware has been removed?

First, Please note that the problem has already been solved by the makers of the Downfall mod and that if you haven’t played Slay the Spire between Christmas and today, you don’t have to worry. However, for those who saw the Unity window open when starting the game, there are some safety measures to take. First, make sure you have one active and up-to-date antivirus program

. If so, the developers behind the mod seem confident that their antivirus was able to prevent the recovery of the sensitive data it came with – even if the malware slipped through the cracks.

Regardless of whether you have an antivirus program or not, We recommend that all players who have played Slay the Spire and may have been infected by the malware change their passwords on all services where you left your internet browser to remember them. The malware has actually been programmed to recover passwords through your browser. Therefore, be sure to carry out a thorough cleaning. If possible, don’t forget to activate a Two-factor authentication on all services that offer it. If you want to play Slay the Spire again, we recommend you pay close attention Update Downfall mod to ensure that the malware has been removed from your computer’s files.