Key takeaways
- Valve removed Beyond The Dark after malware allegations surfaced.
- The malicious payload allegedly stole passwords, browser data, and crypto wallet information.
- Attackers reportedly hijacked an existing Steam game instead of publishing a new one.
- The malware hid inside a modified UnityPlayer.dll file.
- Anyone who installed the game should run antivirus scans and change passwords immediately.
Selinux should help with this, but by default all ‘non-server’ apps can just access anything across the user’s home. Maybe I should look into this. Hmmmm.
Edit: then again, steam games usually run via wine, using a simulated windows filesystem… Maybe they are isolated already? I really should look into this.
No, the Z drive in wine maps to your linux file system.