Almost 88,000 Vietnamese Gamers’ Steam Accounts Compromised: A Cybersecurity Warning from the Virtual to the Real World

In 2024, 5.7 million Steam accounts worldwide were compromised by infostealer malware, according to the latest report from Kaspersky Digital Footprint Intelligence (DFI). Notably, Vietnam was among the most heavily affected countries, with nearly 88,000 accounts having their login information leaked.

Asia-Pacific: A “Delicious Prey” for Hackers

Kaspersky’s analysis shows that a total of 11 million gaming accounts across various platforms (Epic Games Store, Battle.net, Ubisoft Connect, GOG, and EA) were breached. Within the region, Thailand topped the list with about 163,000 leaked accounts, followed by the Philippines (93,000), with Vietnam ranking third.

The Asia-Pacific region is a global gaming hub, home to more than half of the world’s gamers (approximately 1.8 billion people). The explosion of digital technology, high mobile usage rates, and online entertainment habits have turned this area into a fertile ground for cybercriminals.

The Risk Extends to Businesses

Alarmingly, it’s not just personal gaming accounts at risk; businesses are also indirectly affected. One study found that 7% of leaked accounts on entertainment services like Netflix, Roblox, and Discord were registered using corporate email addresses. This creates a serious risk that hackers could leverage leaked emails to:

• Launch phishing attacks to infiltrate company systems.
• Install malware on work devices.
• Use company accounts to access sensitive data.

Ms. Polina Tretyak, a Kaspersky DFI researcher, warned:

“Cybercriminals often release stolen data on the dark web after many months, or even years. As a result, the pool of leaked data is constantly expanding, and the real threat is often greater than the statistical figures suggest. Users should change their passwords regularly, avoid using the same password for multiple services, and run security software as soon as they suspect they’ve been attacked.”

Impact on Vietnam

According to local cybersecurity experts, the leak of nearly 88,000 Vietnamese gaming accounts poses not only individual risks but also potential organizational dangers:

• Increased phishing attacks in Vietnam: The compromised accounts can become a tool for hackers to send scam messages within gaming communities, which can then spread to social media and other apps.
• Risks to Vietnam’s gaming and fintech industries: Vietnam is currently one of the fastest-growing online gaming markets in Southeast Asia. If gamers’ trust erodes, the revenue from this industry and digital payment services could be affected.
• Risk of corporate data leaks: When employees use company emails to register for games or entertainment services, cybersecurity vulnerabilities can spread to internal systems, causing significant damage to businesses.

Mr. Nguyen Minh Duc, a cybersecurity expert in Vietnam, commented:

“Attacks via the gaming ecosystem are often underestimated, but in reality, hackers exploit it as the easiest entry point. Vietnam needs to increase user education on information security, while businesses must implement data leak monitoring systems to protect themselves before damage occurs.”

Warning and Solutions

• For individuals: Regularly update security software, change passwords periodically, and avoid downloading cracked or modified games from unknown sources.
• For businesses: Monitor dark web forums, implement a Digital Footprint Intelligence system for early leak detection, and establish strict regulations on using company emails for personal services.

This incident demonstrates that the virtual world is no longer separate from the real one. A single leaked gaming account can become a “gateway” for a series of more serious cyberattacks, impacting even Vietnam’s digital economy.