HomeNewsSlay the Spire
Popular Slay The Spire mod Downfall was hijacked to spread malware through SteamThe malware was designed to steal passwords
The malware was designed to steal passwords
Image credit:Table 9 Studio
Image credit:Table 9 Studio
Slay The Spiremod Downfall suffered a “security breach” on Christmas day which allowed hackers to distribute malware through Steam, the developers of the mod say. The malware attempts to steal users' passwords from their internet browser, as well as passwords for messaging services Telegram and Discord.
Affected users would have seen a “Unity library installer popup” upon launching Downfall during the hijack. The hack was reversed as of around 1:40pm ET (6:40pm GMT) on December 25th,according to the announcement.
“The payload it tries to scrape and generate involves passwords, specifically from your browsers, Discord, and a few other applications: Windows local login,Google Chrome, Yandex, Microsoft Edge, Mozilla Firefox, Brave, Vivaldi, Telegram, Discord, and files that might contain the word ‘password’ (if ‘password’ is in the filename).”
Downfall is a huge, popular Slay The Spire mod that adds new playable characters, a new mode, and more. Its developers have since started work onTales & Tactics, a standalone auto-battling Chess roguelike.
