PirateFi: Suspicious Web3 Game Removed from Steam Amid Malware Concerns

Reportedly amassing over 7,000 players, PirateFi, a free-to-play web3 game, debuted on Steam but was promptly removed due to suspected malware. Valve notified players of the compromised builds uploaded to the platform.

According to SteamDB, users who downloaded PirateFi were alerted: "The Steam account of the developer for this game uploaded builds to Steam that contained suspected malware."

Valve advises users to perform a full-system antivirus scan or consider reformatting their OS to eliminate any lingering malicious software.

Steam reviews reveal a suspicious pattern. Positive reviews surfaced shortly after launch from accounts with limited playtime, possibly masking the game's malicious nature.

However, later negative reviews accused the game of data theft, unauthorized Steam wallet expenditures, and stolen screenshots, predominantly from newly created accounts. The emergence of negative reviews from fresh accounts raises concerns about the authenticity of previous positive reviews.

A Telegram account attributed to Jose Andres offered $17 per hour to moderate the game, claiming over 7,000 players. This "job" likely aimed to recruit more players as part of the game's installation process.

Valve removed PirateFi on February 12 after six days of availability. SteamDB data suggests the "7,000 players" claim was inflated, with the game boasting an all-time peak of only five concurrent players. However, Gamalytic estimates around 800 downloads, while VG Insights reports up to 1,500 downloads.

This incident raises security concerns within the Steam store, highlighting the need for robust internal measures to prevent similar attempts.

Valve has been contacted for further comment.