Getting that from a friend makes it even more obvious, unless your friendlist is full of people who run CS:GO scam sites.
Comment has been collapsed.
I would not open this link even if my mom sent it ;) But I know what you mean a lot of people open links from friends even without thinking for a second.
Comment has been collapsed.
(posting this here as well)
As someone that fell for it :( here is how it works.
The target website has a "Sign in through steam button" which when pressed transfers you to a typical steam login page, only its not hosted on steam, as all phishing scams its only meant to look like it.
Once you login with user name and password - a popup appears for the mobile authenticator code. The login never completes but keeps spinning a loading icon - which I believe is part of the scam as well to delay you as much as possible.
The login is somehow checking to see if the user exists because I re tried it with random fake usernames and it never went past the first stage.
Purpur3141's suggestion here is the best way to go (as a general rule to logging in to any site via steam) :
https://www.steamgifts.com/discussion/2JLw2/psa-my-steam-account-was-compromised-but-it-is-back-to-normal-hopefully#O3bPZJS
Comment has been collapsed.
could we keep all these "compromised account" threads in a single one? would be more useful, imo
Comment has been collapsed.
or make a RAchart master thread of all of them/the compromised account names until such time as they are un-compromised.
Comment has been collapsed.
what if you got this message from your trusted friend?! Not from random guy but from your trusted friend?! It's not that obvious now, right?
I just know none of my friends are Nigerian princes
Comment has been collapsed.
reminds me of the very first event here that I ever participated in: Archi's Spring event. :D
(specifically, this now-public page )
Comment has been collapsed.
The best part is that somebody can send you that message even if he's not on your friendlist. Seriously - I got 2-3 messages like that daily for couple of days (nothing during last week though). Steam should remove this "feature" imho.
Comment has been collapsed.
Come on, in such case you get a big fat red warning saying "Do you really really really want to see this message from that person you don't know, or to block it?" before you can even read a word of it. You should be able to disable it for yourself via the settings indeed, but removing it globally is unnecessary.
Comment has been collapsed.
I got that exact message from a random person. Why the hell does steam allow people to write someone outside their friends scope? This is a perfect invitation for spam bots.
Comment has been collapsed.
How did these friend' accounts get hijacked? Were they not running 2-factor authentication?
Comment has been collapsed.
Probably like this https://www.steamgifts.com/discussion/2JLw2/psa-my-steam-account-was-compromised-but-it-is-back-to-normal-hopefully
You just need to log on a phishy site that will grab your auth code and change the phone automatically within the moment you log in
Here's the next fool to fall for the trick.
https://www.steamgifts.com/discussion/ubFFM/psa-nabu-tsu-has-had-his-account-compromised
Comment has been collapsed.
Wow, that's messed up. You really can't trust anything these days when 2-factor authentication fails you. I wonder if it's the Steam app implementation that doesn't work. Uplay 2fa goes through Google's authenticator - I wonder if that's more secure than Steam's.
Comment has been collapsed.
My guess is the site isn't just a regular phishing page where it sends your name and password to the creator, but actually has the 2fa popup where it asks you for the code. Basically it's a login page for a bot that highjacks the account you login with.
Comment has been collapsed.
I'm glad I don't play CSGO or any of that crap - it seems those games that live off of the Steam market are the ones that give the players most of these problems.
Comment has been collapsed.
Seems to be going out of CS:GO now, I just received a message from someone asking me to register for some site that will give me 20$ if I register, could be just one of the old stupid sites that makes you do an offer and gives you nothing but could also be one of these "new ones" (they've been around for a while really). I didn't click the link so no way to know.
Comment has been collapsed.
2fa on Steam was not intended to protect accounts.
Comment has been collapsed.
Quoting Ratha's excellent advice:
There are only two places you ever enter your login info into on Steam:
1: Directly from the Store page.
2: Directly from the Community page.
For everywhere else you use the green 'Signin with Steam' button, and if it ever prompts you for a username, password, email, or authenticator, you close the site immediately because its trying to steal your information.
Comment has been collapsed.
Exactly. Steam only requires you to manually enter login data is their own site, every other just refers to that (and if you use the sign in with steam button and it prompts you to log in, in the url bar there should be a green lock with Valve written besides it)
Comment has been collapsed.
it's related to CSGO, we should all know better to ignore everything about it. 🤷
Comment has been collapsed.
Example - sorry but in polish only.
https://www.youtube.com/watch?v=ZAFqICPbDwE
Comment has been collapsed.
I started the Thread days ago warning people.
https://www.steamgifts.com/discussion/ovL7x/has-anyone-encounter-private-steam-messages-from-malicious-hacked-accounts
Comment has been collapsed.
what if you got this message from your trusted friend?!
Well, obviously I'll decide that my trusted friend's account was stolen, and I'll try to inform him/her about that fact via some way of communication other than steam.
Comment has been collapsed.
If you got this message from someone from your steam friendlist DON'T click the link!
HI! YOU WON AWP | ASIIMOV.
1) Log in https://******.com/DONOTENTER/?toxic promo CODE: WIN_AZIMOV
2) Open the "secret Case"
3) Take the AWP | Asiimov, which fell !
GIVEAWAY ENDS 12.10.2018 !!
It's a fake! You can say... of course it's fake! It's so obvious! But... what if you got this message from your trusted friend?! Not from random guy but from your trusted friend?! It's not that obvious now, right?! I got this message from my friend yesterdady morning and i didn't click it because i don't play CSGO. Yesterday evening he apologized me for this and said that his account was hijacked! Just couple minutes ago i got the same message from another friend of mine. Another trusted one so i asked the first guy how it happened.
Part of our conversation:
Other threads about this: here, here and here
Comment has been collapsed.