The Federal Bureau of Investigation (FBI) is investigating a series of malware-infected video games that appeared on the popular PC gaming platform Steam. The agency is now asking players who may have downloaded these manipulated titles to come forward and provide information that could help identify victims and track down those responsible.
The FBI is looking for victims in an ongoing malware investigation
The investigation is being led by the FBI’s Seattle Division, which recently launched an online portal for potential victims to report if they installed certain Steam games that contained malware. According to the agency, several titles distributed through the platform between May 2024 and January 2026 were found to contain hidden malware capable of stealing personal data and accessing user accounts.
Authorities have already identified a list of games believed to be affected. These include BlockBlasters, Chemia, Dashverse (also known as DashFPS), Lampy, Lunara, PirateFi and Tokenova. Although many of these titles were small or lesser-known indie projects, they still attracted enough downloads to cause financial and security damage to some players.
In several cases, the malware embedded in these games was designed to steal account credentials, browser cookies, and other sensitive information from infected computers. In one reported incident, a player lost access to multiple online accounts after malware extracted login credentials and distributed fraudulent links to contacts.
Valve, the company that operates Steam, has acknowledged the investigation and confirmed that it is cooperating with law enforcement. Some of the affected games were removed from the platform after the malicious activity was discovered.
Why the investigation is important
The FBI investigation highlights a growing cybersecurity risk in the gaming ecosystem. Steam has more than 100 million monthly users and its open marketplace allows developers from around the world to publish games. While the vast majority of titles on the platform are legitimate, the size of the market allows malicious actors to occasionally inject malicious software into game downloads.
Malware disguised as games can be particularly dangerous because users often trust the platform and may not suspect that a downloaded title may contain malicious code. Once installed, these programs can steal sensitive data such as login credentials, cryptocurrency wallet information, and personal files.
While malware-infected games remain rare on Steam, security experts warn that the consequences for affected users can be serious. Stolen data can lead to financial loss, identity theft and compromised online accounts.
Why players should be careful
For gamers, the investigation is a reminder that even trusted platforms are not completely immune to cyber threats. Anyone who downloaded the identified games during the affected period is asked to check their system for suspicious activity and to contact the FBI if they believe they may have been affected.
The agency has introduced a special reporting form where potential victims can submit details of their experiences. According to the FBI, identifying victims is an important part of federal cybercrime investigations because it allows authorities to determine the scope of the attack and potentially recoup losses to those affected.
Players who respond may also be contacted by investigators to obtain additional information that could help identify the individuals responsible for spreading the malware.
This won’t be the first time malware has been spread using games
In March last year, Valve removed the title “Sniper: Phantom’s Resolution” due to suspicions of malicious activity. A few months earlier, the company also removed the survival game Pirate Fi and recommended users run a full system scan with a trusted antivirus if they had a copy installed.
In 2024, Activision launched an investigation into the Infostealer malware, which targeted gamers with the goal of stealing their login credentials. In 2023, hackers attacked Call of Duty: Modern Warfare 2, one of the most popular games at the time, with self-propagating malware. Electronics Art also experienced an embarrassing period when malicious actors took over players’ computers during a game, resulting in the postponement of an Apex Legends tournament.
The FBI’s investigation is ongoing and authorities are working to gather information about the threat actors behind the malicious games. By collecting reports from affected players, investigators hope to learn how the malware spreads, identify associated accounts or infrastructure used by attackers, and possibly file criminal charges.
Valve is expected to continue supporting the investigation while strengthening its platform moderation systems to prevent similar incidents in the future. Meanwhile, cybersecurity experts recommend gamers keep their antivirus software updated and be careful when downloading unknown titles, even from reputable platforms.
As the investigation continues, more details about the malware campaign and its impact on Steam users are expected to emerge, providing further insight into how cybercriminals have attempted to exploit one of the world’s largest gaming platforms.
