Overview
- Officials warn the malware could have exfiltrated sensitive data and assets during attacks spanning May 2024 to January 2026.
- Investigators identified seven titles as infected: BlockBlasters, Chemia, Dashverse/DashFPS, Lampy, Lunara, PirateFi and Tokenova.
- Valve removed several of the games, yet Lampy and Lunara remained available on Steam at the time of reporting, and PirateFi was pulled in February 2025.
- The FBI’s voluntary form requests name, address and the Steam‑linked email, with optional fields for cryptocurrency wallet addresses and bank information to document losses.
- The bureau asks how the games were promoted online and may request usernames, screenshots or communication logs during follow‑up, as the form does not accept uploads.