Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

BlockBlasters cryptodrainer on Steam

Malware Activity
First reported
Last updated
Happening score
H score 21
1 unique sources, 1 articles

Summary

Hide ▲

The BlockBlasters game on Steam was turned into a cryptodrainer after a malicious component was added on August 30, putting players' wallets and login credentials at risk. One streamer said the attack caused a loss of $32,000 in cryptocurrency during a live fundraiser. Investigators estimated the operation may have stolen about $150,000 from 261 Steam accounts, while another group reported 478 victims. The payload also harvested Steam login information and victim IP addresses.

Related Happenings

Vidar Stealer 2.0 fake game-cheat distribution

Malware Activity
First: 18.03.2026 13:15 Last: 18.03.2026 13:15 Sources 1

About this happening: The **Vidar Stealer 2.0** malware is being spread through **fake game-cheat repositories** and **Reddit lures**, putting players seeking cheats for major online games at risk of *...

Open Happening

Malicious Steam games distributing infostealers and cryptodrainers

Malware Activity
First: 13.03.2026 22:52 Last: 13.03.2026 22:52 Sources 1

About this happening: Multiple **Steam games** were used to deliver **information-stealing malware**, putting players' **credentials** and **cryptocurrency wallets** at risk. The abuse spanned **eight...

Open Happening

FBI Seattle Division Steam malware victim notice

Law Enforcement
First: 13.03.2026 22:52 Last: 13.03.2026 22:52 Sources 1

About this happening: The **FBI Seattle Division** is seeking affected **Steam** users in an ongoing **malware** investigation tied to **eight malicious games**, expanding the case’s victim pool and he...

Open Happening

Stealit fake game and VPN installer campaign

Campaign
First: 13.10.2025 16:45 Last: 13.10.2025 16:45 Sources 1

About this happening: The **Stealit** campaign is using **fake game and VPN installers** to infect users and **move its C2 panel**, increasing the risk of credential and wallet theft. The operation mat...

Open Happening

Steam client update blocks custom URI scheme launches to reduce exploitation

Security Tool/Service
First: 06.10.2025 16:56 Last: 06.10.2025 16:56 Sources 1

About this happening: **Steam** released a **Client update** that blocks **custom URI scheme** launches, reducing a potential exploitation path through the platform. The change matters because it harde...

Open Happening

Timeline

  1. 22.09.2025 12:28 1 articles · 8mo ago

    BlockBlasters gains cryptodrainer on Steam

    Exploitation Observed

    A cryptodrainer component was added to the verified Steam game BlockBlasters on August 30, turning the free-to-play 2D platformer into a wallet-draining payload distributed through Steam downloads.

    Show sources
    Open in new tab
  2. 22.09.2025 12:28 2 articles · 8mo ago

    Researchers detail BlockBlasters theft scope and payloads

    Technical Analysis Update

    Researchers described a BlockBlasters dropper batch script that checked the environment, collected Steam login information and the victim's IP address, and uploaded the data to a C2 system; GDATA researcher Karsten Hahn also documented a Python backdoor and a StealC payload, while investigators estimated about $150,000 stolen from 261 Steam accounts and VXUnderground reported 478 victims. During a live fundraiser for Raivo Plavnieks, a.k.a. RastalandTV, for stage 4 high-grade sarcoma treatment, the malware also drained more than $32,000 from a cryptocurrency wallet.

    Show sources
    Open in new tab