Tech
FBI arrests man accused of using Steam games to drain victims’ crypto wallets
U.S. prosecutors have accused a Florida man of uploading fake video games that contained malware to Steam, the popular PC games platform. Once victims downloaded and installed the games, the malware was designed to infect their computers, steal their passwords and other data, and drain their crypto wallets, according to a criminal complaint.
On Tuesday, the FBI arrested Zyaire Wilkins, a 21-year-old Florida resident and student. On Wednesday, prosecutors accused him and a number of unnamed co-conspirators of hacking crimes. Over the past two years, Wilkins and his partners allegedly published several malware-laden video games on Steam, including BlockBlasters, Dashverse, Lampy, Lunara, and PirateFi. Using that malware, says the FBI, Wilkins and his accomplices infected around 8,000 victims, and then hacked around 80 cryptocurrency wallets to steal at least $220,000 worth of crypto.
Wilkins and the others marketed their malicious video games on Discord, LinkedIn, and Telegram, according to the authorities.
Wilkins’ lawyer did not respond to a request for comment.
In March, the FBI announced that it was investigating a hacker suspected of using malware-embedded video games published on Steam to hack victims. In the announcement, the bureau called for people who downloaded the malicious games, which included those named in this week’s complaint, to come forward and provide evidence to aid the investigation.
In the last year, Steam’s maker Valve has removed several video games from its platform after they were found to contain malware, including PirateFi. All the games were designed to look legitimate, to the point that players could install them and play them, but they all contained malware.
After the FBI identified another person involved in the crimes, according to the complaint, federal agents interviewed them. The unnamed person said they worked with other people to raise money to launch and market the malicious games in return for sharing some of the stolen cryptocurrency. The FBI identified a specific crypto account involved in the scheme, and then traced cryptocurrency payments made with that account to buy several gift cards, including for Uber Eats. After subpoenaing Uber, the feds were able to see that the gift cards were linked to an account that made deliveries to Wilkins, who went by the nickname Sibel.eth online, according to the complaint.
The feds then got a search warrant for Wilkins’ residence, where they seized his MacBook laptop, cellphones, other devices, and digital wallets. According to the complaint, he refused to speak or answer any questions.
When you purchase through links in our articles, we may earn a small commission. This doesn’t affect our editorial independence.
Tech
Patreon stops asking AI bots not to scrape — and starts blocking them
Patreon, the membership platform for creators, is cracking down on AI scraping its content for training purposes. On Thursday, the company shared that it’s working with internet infrastructure provider Cloudflare to directly block access to AI bots designed to train their AI models on creators’ work without permission.
The strengthened measures were necessary because AI scraping has become more sophisticated since it first put measures in place to deter AI crawlers in 2023, the company says. In addition, Patreon’s paywall has long locked much of creators’ content out of reach of crawlers. But more recently, the company introduced new discovery tools like a redesigned Home Feed and its tweet-like Quips, which could expose more content to crawlers.
The changes come about as more online publishers and content creators are coming to grips with how AI is ingesting their work for the purpose of making their AI models smarter. To combat this, Cloudflare now offers tools that allow website publishers to restrict AI bots, including a marketplace that lets websites charge AI bots for scraping, dubbed Pay Per Crawl. Earlier this month, it changed its policies so that “mixed-use” crawlers, meaning those that both index and train on a website’s content, are blocked by default on any pages that host ads.
Patreon says that it’s extending its existing work with Cloudflare to use the company’s AI Crawl Control technology to update its AI policies and enforcement tools. The difference here is that instead of simply asking AI crawlers not to scrape content using the robots.txt files — a standard way to provide bots with instructions on how they can use its site — Patreon is now actively blocking AI training bots.
“Consent shouldn’t depend on whether a scraper chooses to behave,” a Patreon blog post explains, referencing the stricter measures.
When testing the features, individual AI training crawlers’ weekly attempts to access Patreon went from “thousands of attempts to zero,” the post noted. That indicates that the AI scrapers were ignoring Patreon’s robots.txt file and scraping the site anyway, despite its requests.
However, the company said that it will allow bots that index pages and organize information that can be used to send users back to Patreon.
“As AI agents become increasingly powerful and popular, creators deserve a meaningful say in how their work is used by AI companies,” remarked Patreon’s product chief Drew Rowny in the announcement. “On most of the Internet, creators have to accept AI training on their work just to reach and grow an audience. Patreon has a different vision: creators should be able to grow their audience and control how their work is used.”
When you purchase through links in our articles, we may earn a small commission. This doesn’t affect our editorial independence.
Tech
Amazon fixing bug that billed some AWS customers billions of dollars
Some Amazon cloud customers woke up on Friday to a surprise bill estimate that said they owed billions of dollars for cloud services they had never used.
Amazon confirmed on Friday that it’s trying to resolve a bug in its Amazon Web Services (AWS) billing portal that showed some customers “owed” millions or billions in cloud computing costs.
In an update on its status page, Amazon said it began seeing inaccurate billing data as of late Thursday. But by Friday morning, the company conceded that the “rollback of a recent change did not resolve the issue.” Amazon said the change relates to its billing computation subsystem.
The good news for the customers who were told they “owe” millions or billions to Amazon is they are likely off the hook. The billing estimates “do not reflect actual usage and charges,” Amazon said.
According to several screenshots posted by Amazon customers on Reddit, one customer was quoted a billing estimate of close to $2.5 billion for this month’s AWS usage, while others had similar alerts, ranging from a few million dollars to hundreds of millions of dollars.
When reached by email, Amazon spokesperson Aisha Johnson referred TechCrunch to the company’s status page and did not comment further, or answer questions about the bug. The company would not say, when asked, if any AWS accounts had been suspended or paused as a result of the issue.
The issue is expected to last several more hours, per Amazon’s status page.
Updated with a response from Amazon.
Tech
Amazon fixing bug that billed some AWS customers billions of dollars
Some Amazon cloud customers woke up on Friday to a surprise bill estimate that said they owed billions of dollars for cloud services they had never used.
Amazon confirmed on Friday that it’s trying to resolve a bug in its Amazon Web Services (AWS) billing portal that showed some customers “owed” millions or billions in cloud computing costs.
In an update on its status page, Amazon said it began seeing inaccurate billing data as of late Thursday. But by Friday morning, the company conceded that the “rollback of a recent change did not resolve the issue.” Amazon said the change relates to its billing computation subsystem.
The good news for the customers who were told they “owe” millions or billions to Amazon is they are likely off the hook. The billing estimates “do not reflect actual usage and charges,” Amazon said.
According to several screenshots posted by Amazon customers on Reddit, one customer was quoted a billing estimate of close to $2.5 billion for this month’s AWS usage, while others had similar alerts, ranging from a few million dollars to hundreds of millions of dollars.
When reached by email, Amazon spokesperson Aisha Johnson referred TechCrunch to the company’s status page and did not comment further, or answer questions about the bug. The company would not say, when asked, if any AWS accounts had been suspended or paused as a result of the issue.
The issue is expected to last several more hours, per Amazon’s status page.
Updated with a response from Amazon.
