Notebookcheck Logo

Game demo linked from Steam page contained malware, raising more security concerns for Valve

Steam logo (Image source: Valve)
Steam logo (Image source: Valve)
Hackers continue to find vulnerabilities in the Steam platform. A gamer noticed a generic-looking FPS title linking to a suspicious external website. Any user who installed the Sniper: Phantom's Resolution demo should immediately run a malware scan and consider resetting passwords.
Desktop Hack / Data Breach Security Windows Software Gaming

Last month, Steam faced controversy when the malware-infested PirateFi title made it onto the platform. Now, a gamer has discovered an infected demo linked from the Sniper: Phantom's Resolution Steam page. In this instance, Valve wasn't hosting a malicious file. Instead, the user noticed a suspicious external website with only a demo link. Redditors investigated and found evidence of malware in the download.

After receiving enough complaints, Valve removed the game from the Steam Store. Still, Sniper: Phantom's Resolution remains listed on Steam's website. The title looks like a generic FPS experience developed by Sierrasixstudios, with no information available about the studio. While lacking definitive proof, gamers accuse the developer of using stolen or faked screenshots.

Infected Steam demo Reddit post (Image source: screenshot, PC Gaming subreddit)
Infected Steam demo Reddit post (Image source: screenshot, PC Gaming subreddit)
Infected Steam demo Reddit investigation (Image source: screenshot, PC Gaming subreddit)
Infected Steam demo Reddit investigation (Image source: screenshot, PC Gaming subreddit)

When unpacking the demo, a Reddit poster encountered a typical Unity game folder structure. However, files that attempt to bypass Windows security are in the directories. The malware also appears to open a browser window for a potential cookie hijacking. The end goal seems to be to steal secure information stored on PCs. At least one popular anti-virus software failed to detect problems during a malware scan. Any gamer who tried to install the demo may want to reset passwords and monitor accounts for suspicious activity.

The latest Sniper: Phantom's Resolution saga highlights how difficult it is for Valve to keep Steam safe for players. Allowing external links has always been risky, even with the site warning users about content on third-party sites. Last Summer, Steam imposed new restrictions on linking to websites and social media accounts. Unfortunately, the rules don't apply to the official links section, often used to promote a game's official site or publisher. Yet, blocking all external URLs is an extreme measure, and would limit gamers from learning more about potential purchases.

Valve tries to accommodate small studios by making the game submission process accessible. Yet, for hackers willing to make the effort, Steam pages from unknown developers can still prey on unsuspecting gamers. 

Related Articles

Flight Simulator PS5 logo (Image source: Microsoft Xbox Gaming, PlayStation Store)
Suspicious Flight Simulator PlayStation Store listing capitalizes on Microsoft PS5 port rumors 03/20/2025
Metal Bringer stands out with bright, captivating visuals that make use of ray tracing tech alongside pixel-generated graphics. (Image source: Steam)
New retro-style mech combat game is rapidly racking up "Very Positive" reviews on Steam 03/18/2025
The Elder Scrolls Online has maintained a consistent player base since its launch in 2014. (Image source: The Elder Scrolls Online)
Award-winning MMORPG drops to $2 from $20 on Steam 03/18/2025
An in-game screenshot from Deadly Premonition that shows off the game's protagonist and supporting cast. (Image Source: Steam)
One of the weirdest survival horror games ever made is 95% off on Steam right now 03/18/2025
There is a new software-only hack to jailbreak the Xbox 360 (pictured). (Image source: Wikimedia w/ edits)
New software jailbreak for Xbox 360 requires only USB drive 03/18/2025
SteamOS was first confirmed to be expanding beyond the Steam Deck at CES 2025. (Image source: @SadlyItsBradley)
Valve’s SteamOS is about to go public—New leak points towards imminent release 03/14/2025
Assassin's Creed Shadows is all set to launch on March 20 (image source: Ubisoft)
Assassin's Creed Shadows to get official Steam Deck support at launch 03/12/2025
The Pura 70 Ultra. (Image source: Huawei)
Huawei mulls apparent device security downgrade for upcoming flagship smartphones 02/15/2025
The Nord 4. (Image source: Notebookcheck)
OnePlus Nord 4 updates to Android 15 with January 2025 security patch 02/09/2025
Windows Defender now flags Flyby11 as potential malware (Image source: Microsoft)
Microsoft now flags a free Windows 11 system requirements bypass tool as malware 02/04/2025
Security vulnerability in Outlook. (Image source: Imagen3)
Vulnerability in Outlook allows hackers to potentially distribute malware via email 01/16/2025
TP-Link is a Chinese company known for its routers and smart home products sold under multiple brands including Deco, Tapo, Omada, and Kasa. (Image source: TP-Link)
US considers banning TP-Link routers due to security concerns 12/21/2024
Meta fined €251 million over 2018 Facebook security breach (Image Source: Timothy Hales Bennett on Unsplash)
Meta fined €251 million over 2018 Facebook security breach 12/18/2024
Vulnerabilities in several versions of Windows mandate the installation of security updates from Windows Update. (Image source: Microsoft)
Critical security updates: Attackers can obtain system privileges on Windows devices 12/11/2024
Cthulhu stealer is basically a disguised Apple disk image (DMG) file that is written in Golang open-source programming language. (Image source: Notebookcheck)
A $500-a-month malware dubbed "Cthulhu Stealer" targets macOS users and steals sensitive data 08/26/2024
An Android trojan resurface by piggybacking on apps available on Google Play. (Image via Android w/ edits)
Anatsa malware targeting European Android users via apps on Google Play app store 02/19/2024
A new malware has been discovered by cybersecurity firm ThreayFabric on the Play Store. (Image: RoonZ.nl via Unsplash)
A new money-stealing malware makes rounds on Google Play Store posing as an innocent app with over 50,000 downloads 02/24/2022
Steam has now removed mods by Chaos that contained potential malware and Bitcoin miners. (Image Source: Epic Games Store)
Potential malware-ridden, Bitcoin mining Cities: Skylines mods removed by Steam 02/18/2022
Fake Windows 11 upgrade website spreads malware that steals sensitive information. (Image: Unsplash)
Bad actors hide malware in fake Windows 11 upgrade site 02/17/2022
static version load dynamic
Loading Comments
Comment on this article
Please share our article, every link counts!
Mail Logo
> Expert Reviews and News on Laptops, Smartphones and Tech Innovations > News > News Archive > Newsarchive 2025 03 > Game demo linked from Steam page contained malware, raising more security concerns for Valve
Adam Corsetti, 2025-03-17 (Update: 2025-03-19)