Trap awaits players in Slay Spire as Mod Downfall unfolds

Slay The Spire Game Community Faces Security Threat
The Slay The Spire game community has recently encountered a serious security threat as hackers targeted the popular dynfall mod to spread malware through the Steam play platform. The virus aimed to steal players’ passwords, including data stored in Internet browsers and popular messaging platforms such as Telegram and Discord. The first indication of this issue for players was the appearance of a pop-up window of the Unity installer when launching the infected mod. The developers of the mod quickly responded, and at approximately 1:40 ET on the day of the attack, they managed to halt the hacker’s assault. It was noted that most antivirus programs were unable to prevent the installation of the malicious software, but they successfully blocked the stolen data from being transmitted over the Internet, thus limiting the potential damage to the victims. The hackers meticulously searched for valuable account information, targeting a wide range of data including local Windows accounts and various browsers such as Google Chrome, Microsoft Edge, Mozilla Firefox, as well as privacy-oriented browsers like Brave and Vivaldi. Additionally, they sought access to Telegram and Discord accounts, as well as files containing the keyword ‘password’. Users who detected the presence of malicious software reported that it created files in various locations on their hard drives. The mod developers advised users to disconnect from the internet while investigating suspicious files to prevent the malware from transmitting any data. In light of the significant compromise, the Downfall developers urged players who encountered the Unity pop-up window to change their “important passwords”, especially those that are not protected by two-factor authentication (2FA). This incident involving Downfall serves as a reminder of the risks associated with online gaming and the widespread use of third-party modifications. While these modifications enhance gameplay, they also carry the potential for cyberattacks. Players are advised to maintain vigilance and take proactive measures to ensure the security of their accounts, particularly by enabling two-factor authentication wherever possible.

Slay The Spire Game Community Faces Security Threat

The Slay The Spire game community has recently encountered a serious security threat as hackers targeted the popular dynfall mod to spread malware through the Steam play platform. The virus aimed to steal players’ passwords, including data stored in Internet browsers and popular messaging platforms such as Telegram and Discord.

The first indication of this issue for players was the appearance of a pop-up window of the Unity installer when launching the infected mod. The developers of the mod quickly responded, and at approximately 1:40 ET on the day of the attack, they managed to halt the hacker’s assault. It was noted that most antivirus programs were unable to prevent the installation of the malicious software, but they successfully blocked the stolen data from being transmitted over the Internet, thus limiting the potential damage to the victims.

The hackers meticulously searched for valuable account information, targeting a wide range of data including local Windows accounts and various browsers such as Google Chrome, Microsoft Edge, Mozilla Firefox, as well as privacy-oriented browsers like Brave and Vivaldi. Additionally, they sought access to Telegram and Discord accounts, as well as files containing the keyword ‘password’.

Users who detected the presence of malicious software reported that it created files in various locations on their hard drives. The mod developers advised users to disconnect from the internet while investigating suspicious files to prevent the malware from transmitting any data. In light of the significant compromise, the Downfall developers urged players who encountered the Unity pop-up window to change their “important passwords”, especially those that are not protected by two-factor authentication (2FA).

This incident involving Downfall serves as a reminder of the risks associated with online gaming and the widespread use of third-party modifications. While these modifications enhance gameplay, they also carry the potential for cyberattacks. Players are advised to maintain vigilance and take proactive measures to ensure the security of their accounts, particularly by enabling two-factor authentication wherever possible.

/Reports, release notes, official announcements.