Bean Battles Steam update carried trojan

Bean Battles is a small Steam game, and the public evidence is thinner than for Downfall or Traffic. The useful signal is consistent: Steam community and subreddit posts on February 15, 2024 warned that the developer's Steam account had been hacked and that a new update was malware.

The reported payload was described by players as a trojan or Epsilon Stealer. Community reports said the malware triggered when the game was run, hijacked Steam and Discord accounts, and led victims to treat saved browser credentials as exposed.

A later Steam discussion comment quoted the Bean Battles Discord saying the game was safe again on February 16, 2024, after users were told to fully uninstall before reinstalling. This record is included because the attack path matches our scope: the official Steam update channel for a real game appears to have delivered the payload.

The uncertainty stays explicit. This is not modeled with the same confidence as incidents backed by vendor advisories or malware writeups, but it is still useful evidence for the pattern of compromised game distribution accounts turning a normal update into credential-stealing code.

Motive

Credential Theft

Cause

Compromised Account Credentials

Transitive

No

• Dev steam account was hacked and game now has a trojan, do not install recent updatereddit.com
• Do Not Play, New update is a virussteamcommunity.com