A interesting piece of malware has been discovered to be infesting Twitch chatrooms. It spreads by using the traditional phishing scam that invites users to participate in a sweepstakes to win rare items from Counter-Strike: Global Offensive. Once the link is clicked, the malware then logs into the nearest Steam account and begins to clear it out.
F-Secure reported the existence of this malware, that it is calling Eskimo, late on Friday; although it is still yet to discover who is behind it and why it targets Steam instead of regular banking and credit card credentials. The company notes that due to the way the Eskimo works by using the infect account’s existing funds to buy items and trading them all to a single particular account should make it easy to discover the identity of the perpetrator.
The real question that arises from this situation is about the intended targets of the attack. Steam wallets are generally not as lucrative as other targets; but it appears that the creator of the malware is more interested in obtaining items to fuel his CS:GO obsession.