Malicious Script Targets Steam Users on GitHub
/ 1 min read
Malicious “steam-account-checker” script targets Steam users. A recently updated script on GitHub, named “steam-account-checker,” is designed to validate Steam logins but contains hidden malicious code. The script employs obfuscation techniques, including appending space characters to conceal its payload, which is encrypted using the Fernet algorithm. Once executed, it installs additional malicious components and exfiltrates user data to a specified URL. Users are advised to exercise caution when downloading code from GitHub, as it may harbor hidden threats.