Steam is once again shaken by a game scandal that contains malicious software (malware) hidden inside. On the platform, which has faced similar cyber security crises in the past and was even shaken by operations involving the FBI last March, this time an independent production called “Rodent Race”, which will be released in 2024, is on the target board.

The product, which met with the players by successfully passing Valve’s strict security filters and review processes when it was first published, turns into a spyware with an incredible technique of cyber hackers. With the developer account being compromised or a malicious strategy change, the entire face and code structure of the game is changed by abusing the store’s update system.

This dangerous software, which secretly collects players’ sensitive information in the background, is quickly removed from the store by Valve after it was caught on the radar of cyber security experts.

• Sneaky Update Trap:The “Rodent Race” game, which was approved in 2024, is named “Beyond The Dark”, similar to the well-known horror game Phasmophobia, with a radical update on May 4, 2026, and hidden data collection codes are injected into it.

• Data Theft and SteamDB Reporting:It is officially documented as a result of SteamDB (Steam Database) information and cyber security analysis that the game collects passwords, cookies and system information in the background without the users’ request.

• Quick Response from Valve:Taking action after the situation was reported, Valve disabled the purchase buttons on the game’s store page, completely removing production from the platform and preventing the crisis from escalating.

Formula to Sneakly Bypass Security Filters: Update Abuse

Many players think that games on a multi-billion dollar platform like Steam are completely safe. In fact, Valve applies very strict rules for every production that enters the store for the first time, performs code scans and gives permission to publish after making sure that there are no harmful elements.

The aforementioned Rodent Race game is also offered to the community through these methods. However, cyber hackers exploit a weak point in the system; In other words, it manipulates the routine “update” system that games receive after release.

With the update made on May 4, 2026, not only the name of the game is changed to “Beyond The Dark”, but also the store images, cover designs and most importantly, all executable (.exe and .dll) documents in the background are renewed.

The game, which passed the first scan months ago, manages to bypass Valve’s automatic control robots for a while thanks to this sneaky update. This method has recently been among the most preferred strategies by cybercriminals to infiltrate digital game stores.

Danger of Information Thieves (Infostealer) Working in the Background

In-depth investigations by cyber security teams show that the new version of the game started working secretly from the moment it was installed on the computer.

This software, which is in the “Infostealer” category, scans the passwords, session cookies, digital wallet information and personal data stored in the internet browsers without the knowledge of the players and sends them encrypted to a remote server.

This situation, which is directly reflected in the SteamDB pages with a “malware” warning, directly endangers the digital identities and financial assets of the players.

Particularly in recent years, cyber criminal organizations have hacked the computers of independent developers and obtained their Steam authorization keys, aiming to infiltrate millions of systems by turning such seemingly clean games into zombie software. In the last major incident, which took place in March 2026 and was the subject of an FBI investigation, a similar information leakage network was busted.

What Precautions Should Players Take?

If you frequently update your Steam library and have somehow downloaded this game (formerly Rodent Race, new name Beyond The Dark) to your computer, you need to follow these security steps without wasting time:

Cleaning the Device from Damaging Documents

The first thing you need to do is to completely remove the game from your computer via Steam. However, this process alone may not be sufficient. Since malicious codes may have infiltrated the system folders, it is vital to thoroughly scan your computer in safe mode with a quality antivirus or antimalware software that has a completely current database.

Securing Digital Accounts

In case the software accesses your browser cookies and passwords; It is recommended that you change the passwords of your Steam account, e-mail addresses, banking applications and social media accounts on a clean device. Making sure that the two-step verification (2FA) system is active on your accounts allows you to avoid such cyber attacks with minimal damage.