https://www.rockpapershotgun.com/2018/02/19/flight-sim-group-put-malware-in-a-jet-and-called-it-drm/ I was going through their forums today reading the comments from devs and reactions from the people who have dumped hundreds of dollars on these mods. tl;dr: They packaged an executable with their installer. If the license key entered during install matched a database of keys known to circulate on Pirate Bay and other torrent sites, it would extract and execute that payload which would dump saved passwords and other data from Chrome profiles. They claim this was to target pirates for legal action. Previous comments have been dug up by their support staff that claim you need to disable your antivirus software to install their mods because of false positives. At the least malevolent, that being targeting only pirates with expertly-written malware that uploaded data to a completely impenetrable server, it's still completely illegal. It's much more likely that this information is being mishandled by amateur game modders with little grasp of cybersecurity. And thanks to complete ignorance, half of their user base is defending them because "lol its just pirates who cares".