FBI Arrest in the Steam Malware Case: Which Games Were Infected and What to Do if You Played One
Federal agents have arrested a 21-year-old Florida man in connection with malware distributed inside free games, in a scheme prosecutors say infected roughly 8,000 devices and stole at least 220,000 dollars in cryptocurrency between May 2024 and February 2026. The FBI's own victim notice names it a Steam malware investigation and lists the games involved. Here is what is established, which titles to check for, and the cleanup that matters if one of them was ever on your PC.
Published July 17, 2026 at 11:05 AM GMT+3. Reviewed July 17, 2026 at 11:05 AM GMT+3. Evidence: federal charging documents and FBI victim notice.
If you ever installed BlockBlasters, Dashverse, Lunara, or PirateFi, treat the PC as compromised: reinstall the operating system rather than just deleting the game, change passwords from a clean device starting with email and anything financial, move cryptocurrency to fresh wallets whose keys never touched the infected machine, and report through the FBI's Steam malware victim form. If you have never installed an obscure free-to-play title from an unknown developer, this case does not affect your Steam library.
federal charging documents and FBI victim notice: FrameReady keeps news claims tied to sources so updates do not drift into guesses.
Issue state: Investigating. Last checked Jul 17, 2026, 11:05 AM.
What is established so far
The details below come from the federal criminal complaint and the FBI's public plea for victim information, as reported by multiple outlets. A complaint is an accusation; the named suspect has not been convicted.
A 21-year-old North Lauderdale, Florida man was arrested and charged with conspiracy to obtain information by computer for private financial gain.
Prosecutors say the group infected roughly 8,000 devices, accessed about 80 cryptocurrency wallets, and stole at least 220,000 dollars between May 2024 and February 2026.
The FBI's victim-information page names the investigation a Steam malware investigation; the complaint describes a popular digital distribution platform without naming it.
Games identified include BlockBlasters, Dashverse, Lunara, and PirateFi.
The titles were promoted on Discord, Telegram, X, and LinkedIn, and prosecutors say bots were used to target users with large crypto holdings.
Valve previously pulled PirateFi, which drew around 7,000 players as a free survival game, and urged affected users to reformat their PCs.
The malware in this case harvested credentials and private data, so removing the game does not end the exposure. Work in this order, and do the password work from a different, clean device.
Back up personal files only, not programs, then reinstall the operating system. Valve's own guidance for PirateFi was a reformat, because credential stealers persist outside the game folder.
From a clean device, change passwords starting with your email account, then banking, Steam, and anything that shares a password with them.
Turn on two-factor authentication, including Steam Guard, as you go.
If you hold cryptocurrency, move it to new wallets whose seed phrases were generated on a clean machine. Do not reuse a seed phrase the infected PC ever displayed or stored.
Check your Steam account for unfamiliar sessions and authorized devices, and deauthorize everything you do not recognize.
Report what happened through the FBI's Steam malware victim form; the case is active and agents are asking affected players to come forward.
How infected free games get past your guard
The pattern in the complaint is repeatable, and recognizing it protects you better than any single virus scan. The hook is a free game pushed at you socially rather than found organically.
The named games were free, from unknown developers, with small player counts and short store histories.
Promotion happened in DMs and social posts, sometimes through accounts that researched targets with visible crypto activity first.
A game that asks you to download an update or launcher from a website outside the store is a hard stop.
Check the developer's history before installing free indie titles: a first-ever release with no linked studio presence deserves more caution than a discounted known game.
Playtime bait, free-to-claim tokens, and crypto-earning promises attached to a game are consistent markers of this scheme's marketing.
None of this means indie games are unsafe as a category. The complaint describes deliberately manufactured titles, not legitimate small studios.
Questions players are asking
Direct answers based on the complaint and the FBI notice.
Q: Is Steam itself hacked? A: No. The case concerns malicious games uploaded to a distribution platform and marketed to targets, not a breach of Steam accounts or infrastructure.
Q: Which games were infected? A: BlockBlasters, Dashverse, Lunara, and PirateFi are named so far. The investigation is active, so the list may grow.
Q: Is deleting the game enough? A: No. The malware stole credentials and data. Valve's guidance for PirateFi was to reformat, and that remains the safe standard.
Q: How do I report being a victim? A: Through the FBI's dedicated Steam malware victim form, linked in this article.
Related next steps
Steam server status
Live Steam service status and player reports, separate from this security case.