Gameranx

Video Game News, Lists & Guides

Skyrim Nexus Reportedly Compromised By Malware Hack

by

Members of the community reddit report that the Skyrim Nexus has injected malware onto their computers.

Skyrim Nexus

The Skyrim Nexus existed long before the Steam Workshop offered modding support for Skyrim, and it's the site everyone goes to download mods for the game, which includes everything from simple alterations like weapons and armor to total conversions that change the game in its entirety. Needless to say, it's a website fans of the game have come to trust implicitly.

A report by members of the Skyrim community on reddit indicate the security of the Skyrim Nexus may have been compromised today.

The reports suggest that the Nexus Mod Manager (NMM) that visitors of the website use to download and manage their mods has been infected with some sort of virus that causes it to download software other than the mods you select.

The creator of the post Whiskeyjoel writes: "I was I'm there earlier downloading some mods, using their installer program. Program kept crapping out, seemed like server problems on their end. Tried downloading a mod manually instead, something downloaded to my comp, but it sure as shit was not what I wanted, because next thing I know, I get a popup message saying my computer has been locked by ICSPA for downloading kiddie porn or some such garbage, and to pay $150 to unlock my computer or else. This is a known malware scam that can be very tricky to get rid of, as I am discovering."

He adds that a file called "skyrim_nexus.exe" will infect your system should you open it.

The virus he speaks of is known as the FBI Moneypak Virus—a form of "ransomware". If you should find yourself infected by it, you can remove it with the aid of Malwarebytes. Further information about the virus can be found on Botcrawl.

Other redditors report that the Nexus Mod Manager isn't the only infected file on the site, and that various mirrors that the site uses to host its mods may also be compromised by the hack job. Should this be the case, I'd recommend staying away from any of the Nexus websites—at least for the time being. The network also includes the Dragon Age Nexus and Dark Souls Nexus, all of which use the same servers to host their files.

Recent Videos

CYBERPUNK SEQUEL CITY, RESIDENT EVIL 9 OPEN WORLD LEAKS & MORE

CYBERPUNK SEQUEL CITY, RESIDENT EVIL 9 OPEN WORLD LEAKS & MORE
Game of Thrones: Kingsroad - Before You Buy

Game of Thrones: Kingsroad - Before You Buy
Elden Ring Nightreign: 10 Things You NEED TO KNOW

Elden Ring Nightreign: 10 Things You NEED TO KNOW
Top 10 NEW Games of June 2025

Top 10 NEW Games of June 2025
What The HELL is Going on With UBISOFT?

What The HELL is Going on With UBISOFT?
10 Things ONLY RPG Gamers Will UNDERSTAND

10 Things ONLY RPG Gamers Will UNDERSTAND
20 WORST Video Game Endings EVER

20 WORST Video Game Endings EVER
25 Upcoming MEDIEVAL Games You SHOULDN'T MISS

25 Upcoming MEDIEVAL Games You SHOULDN'T MISS
GTA 4 REMASTER LEAKED? UBISOFT DELAYS ALL BIG GAMES & MORE

GTA 4 REMASTER LEAKED? UBISOFT DELAYS ALL BIG GAMES & MORE
Category: