The fan expansion for Slay the Spire, Downfall, was hacked on Christmas Day to spread Epsilon information-stealing malware via the Steam update system. The malware collects passwords and credit card details from web browsers, as well as Steam and Discord info. An unidentified threat actor gained control of Downfall’s Steam and Discord accounts, potentially putting users who logged in during the breach at risk. The hacker is also suspected of targeting other games and game developers.

Novel malware from Russia’s APT28 prompts LLMs to create malicious Windows commands – csoonline.com
Novel malware from Russia’s APT28 prompts LLMs to create malicious Windows commands csoonline.com