Twitch-spread malware wipes out Steam accounts

Security firm F-Secure has discovered that malware spreading through Twitch’s video channels is able to wipe out Steam accounts. Among other things, the malware sells items that a user has purchased, and likely trades items with the perpetrators.

The malware has been given the name Eskimo, F-Secure reports, which explained the discovery in a blog post. Eskimo spreads through bots that invade video channels on Twitch, a popular social networking site where gamers can stream live footage. The bot then posts a comment about a raffle where prizes can be won. However, viewers who click on the link are served malware.

According to F-Secure, the Eskimo malware targets Steam. The malicious software appears to be able, among other things, to buy and sell items via the gaming platform after having settled on the PC of the affected user. Items that a user already owns are sold at a discount, probably to amass enough money quickly to buy ‘interesting’ items for the perpetrators; many users would have noticed that expensive items are exchanged with an account under the name Youni, which leads to the suspicion that this account is in the hands of the perpetrators.

It is not entirely clear why the malware specifically targets Steam, but the perpetrators seem to be aiming to collect expensive items via the platform, which they can then sell for a lot of money. It is unclear whether Steam has already taken action against the Eskimo malware. For example, owner Valve could find out who is behind the Youni account.