The FBI apprehended 21-year-old Florida student Zyaire Wilkins on charges linked to a malware distribution scheme embedded in video games on Steam. The malware hijacked passwords and personal data from those who installed the games, siphoning approximately $220,000 from at least 80 cryptocurrency wallets.
Malware Spread Through Popular Steam Titles
According to a federal complaint, Wilkins and his unidentified co-conspirators operated this criminal campaign for nearly two years, from May 2024 to February 2026. They released several malware-infected games on Steam, including "BlockBlasters," "Dashverse," "Lampy," "Lunara," and "PirateFi." Additional games cited in the FBI investigation include "Chemia," "DashFPS," and "Tokenova." These games were fully functional and appeared legitimate, enabling the malware to harvest victims' credentials quietly in the background.
The group aggressively promoted these titles on social platforms like Discord, Telegram, X, and LinkedIn. Utilizing bots, they identified individuals with substantial crypto holdings and targeted them with direct messages encouraging installation, enhancing the operation's effectiveness and focus on high-value victims.
Investigation and Arrest Details
Investigators traced stolen Bitcoin to over 150 gift cards, many redeemed through Uber Eats. This financial trail led to Wilkins' residence in North Lauderdale and his university addresses. Searches resulted in the seizure of multiple devices and three cryptocurrency wallet seed phrases, including one for Monero.
Wilkins' transaction records revealed cryptocurrency movements totaling $382,000. Federal prosecutors have charged him with a variety of hacking offenses linked to this extensive cybercrime. The FBI's case highlights the growing sophistication of malware campaigns targeting digital asset holders through consumer platforms.
This material is for informational purposes only and does not constitute financial advice.



