Updated
Updated · Tom's Guide · Jun 18
Valve Removes Dozens of Malicious Steam Wallpapers After 20M-50M-Install App Spread Malware
Updated
Updated · Tom's Guide · Jun 18

Valve Removes Dozens of Malicious Steam Wallpapers After 20M-50M-Install App Spread Malware

3 articles · Updated · Tom's Guide · Jun 18

Summary

  • Dozens of infected Wallpaper Engine assets were pulled from Steam Workshop after Kaspersky found they were being used to install backdoors, steal Steam credentials and, in some cases, deliver ransomware.
  • Wallpaper Engine’s “application wallpapers” can run as Windows executables, letting attackers hide malware in install packages or password-protected archives that users are tricked into opening.
  • Kaspersky said some malicious wallpapers had already logged thousands or tens of thousands of downloads; one posing as game-themed content installed DarkKomet and a tampered AggregatorHost.dll to harvest credentials.
  • The campaign also carried Lumma and Vidar infostealers, underscoring how Steam mods and wallpapers on trusted platforms can still be weaponized and why users should favor trusted creators and avoid unknown executables.

Sources

Left100%
Tom's Guide1d ago
Steam Wallpaper Engine Used by Hackers to Spread Malware and Steal Credentials
it-connect.tech9h ago
Steam Workshop Malware Campaign Hits Animated Wallpapers
X6h ago
Decrypt: Hackers Exploit Steam's Popular Wallpaper Engine to Spread Crypto-Stealing Malware Attackers are abusing Steam Workshop through Wallpaper Engine, one of Steam's most popular live-wallpaper apps, to distribute malicious downloads disguised as
6 Sources

Insights

How can gamers spot malware when it's disguised as a simple desktop wallpaper on Steam?
Can open platforms like Steam prevent abuse without killing the community creativity they thrive on?
With malware now using blockchain to hide, are traditional antivirus tools becoming obsolete?

Related Stories

Steam Scrubs Dozens of Malicious Wallpapers After 89% of Hijack Attempts Hit China
1d ago
Sonatype Finds 1,500 Malicious AUR Packages in 1 Week as Arch Warns Users to Review Scripts
2d ago
15 JetBrains Plug-ins Stole AI API Keys Across Nearly 70,000 Installs
2d ago

Sources

6 total
Left100%
Tom's Guide1d ago
Steam Wallpaper Engine Used by Hackers to Spread Malware and Steal Credentials
it-connect.tech9h ago
Steam Workshop Malware Campaign Hits Animated Wallpapers
X6h ago
Decrypt: Hackers Exploit Steam's Popular Wallpaper Engine to Spread Crypto-Stealing Malware Attackers are abusing Steam Workshop through Wallpaper Engine, one of Steam's most popular live-wallpaper apps, to distribute malicious downloads disguised as
Show all 6 sources

Related Stories

Steam Scrubs Dozens of Malicious Wallpapers After 89% of Hijack Attempts Hit China
1d ago
Sonatype Finds 1,500 Malicious AUR Packages in 1 Week as Arch Warns Users to Review Scripts
2d ago
15 JetBrains Plug-ins Stole AI API Keys Across Nearly 70,000 Installs
2d ago