Dozens of malicious wallpapers found on Steam Workshop: gamers’ accounts at risk
Summary
Kaspersky SecureList reports dozens of malicious wallpapers on Steam Workshop that exploit Wallpaper Engine to hijack Steam accounts. The malware uses two delivery methods, drops a backdoor, and exfiltrates credentials, with indicators of compromise and specific payloads listed. Steam has removed some samples, but the guidance emphasizes caution and antivirus checks for wallpapers.