Duet Night Abyss launcher spreads malware on Steam

Developers of the gacha RPG Duet Night Abyss have apologized for a cybersecurity incident that distributed malware to players' PCs via a launcher update on March 18. The malware, identified as Trojan:MSIL/UmbralStealer.DG!MTB, targets passwords and cryptocurrency. Players receive in-game compensation as the team implements security enhancements.

The free-to-play gacha RPG Duet Night Abyss, developed by Pan Studio and published by Hero Games, experienced a malicious attack on March 18. A patch to the game's launcher, released at 7:39 am UTC on Steam, contained the malware known as “Trojan:MSIL/UmbralStealer.DG!MTB” or “Umbral Stealer.” This infostealer records keystrokes, captures screenshots, and aims to harvest sensitive information like passwords and cryptocurrency wallets. Many players' antivirus software detected and quarantined it promptly due to its age and known signatures. The issue surfaced about 24 hours before the developers' public response on March 19. In a statement on the game's X account, the team noted: “Even after the initial breach, persistent attempts to continue the attack and spread misinformation have occurred. We strongly condemn these actions. As security is a vital pillar of a live product, this incident has served as a serious wake-up call for our team.” As compensation, affected players will receive “Commission Manual: Volume III*5, Prismatic Hourglass*10,” equivalent to ten free random skins. The developers have introduced several security enhancements to prevent future incidents. This marks the second compromise for Duet Night Abyss in a month; a prior launcher attack in late February was less severe, merely urging players to try Genshin Impact instead. Community reactions remain skeptical given the repeated breaches.

Artigos relacionados

O Daemon Tools, um popular aplicativo para montagem de imagens de disco, foi comprometido em um ataque à cadeia de suprimentos iniciado em 8 de abril, distribuindo malware por meio de atualizações oficiais. A empresa de segurança Kaspersky relatou infecções em milhares de máquinas em mais de 100 países. Usuários são aconselhados a verificar seus sistemas imediatamente.

Reportado por IA

Setenta e três pacotes de código aberto da Microsoft foram comprometidos no final da semana passada com um malware que rouba credenciais de serviços em nuvem e ferramentas de desenvolvedor. O código malicioso é ativado quando aberto em agentes de programação de IA.

sábado, 20 de junho de 2026, 10:28h

Halfbrick Studios revela Guncrypt, seu primeiro jogo para PC

terça-feira, 16 de junho de 2026, 13:13h

Kwalee Labs closes studio after Luna Abyss launch

sexta-feira, 12 de junho de 2026, 23:38h

ShinyHunters explora vulnerabilidade zero-day crítica no PeopleSoft

segunda-feira, 25 de maio de 2026, 20:59h

Malware Trapdoor tem como alvo desenvolvedores de IA e cripto

sexta-feira, 08 de maio de 2026, 19:49h

Hackers criam site falso do Claude para distribuir malware

Este site usa cookies

Usamos cookies para análise para melhorar nosso site. Leia nossa política de privacidade para mais informações.
Recusar