The Federal Bureau of Investigation has arrested a Florida man accused of uploading fake video games containing malware to Steam, the popular PC gaming platform. Once victims downloaded and installed the games, the malware infected their computers, stole passwords, and drained their crypto wallets, according to a criminal complaint filed Wednesday. Zyaire Wilkins, a 21-year-old student, along with unnamed co-conspirators, allegedly operated the scheme for two years, infecting about 8,000 victims and stealing at least $220,000 worth of cryptocurrency.
Malicious games and how the scheme worked
The rogue titles, including BlockBlasters, Dashverse, Lampy, Lunara, and PirateFi, were published on Steam. The malware stole credentials and allowed attackers to access crypto wallets. Wilkins and his accomplices marketed the games on Discord, LinkedIn, and Telegram. All games appeared legitimate; users could play them, but the hidden malware executed in the background. Valve, Steam's owner, removed several games after discovering the malware, including PirateFi.
Sponsored Protocol
The investigation and the Uber Eats link
The investigation progressed when the FBI identified an unnamed person involved, who said they helped raise funds and market the games for a cut of the stolen crypto. Agents traced crypto payments to the purchase of Uber Eats gift cards. Subpoenaing Uber revealed the cards were linked to an account making deliveries to Wilkins' address. Wilkins operated online under the nickname Sibel.eth.
The FBI executed a search warrant at Wilkins' residence, seizing a MacBook, cellphones, other devices, and digital wallets. Wilkins refused to speak or answer questions. His lawyer did not respond to requests for comment.
Security implications for businesses and individuals
This case highlights the growing threat of malware disguised as legitimate software. Small and medium enterprises, especially those in Europe, must remain vigilant. As discussed in the article China’s AI moonshot leaves Europe behind, rapid technological change demands robust cybersecurity strategies. Additionally, proper data infrastructure, as explained in Redis Cluster for Your Business, must incorporate security controls against such threats. For database security best practices, see PostgreSQL VACUUM and autovacuum.
Sponsored Protocol
The FBI advises caution when downloading unknown games on Steam and recommends keeping antivirus software updated. For more information on malware, consult the Wikipedia entry on malware.