... were you living under a rock, without internet access for like.. whole last year?
They're bots. Their grammar sucks. The links that they provide you are so obvious that it's a scam, that I can't believe people fall for their shit.
Yes, I have encountered them, I have over 200 of them blocked. There are so many variations of them.
Edit:
They're usually level up to level 3, and mostly with private profiles. Do not bother adding profiles like that, and if you do, if he replies within few first seconds of adding him, linking you to some screenshot or something, block him.
They will lie to you that you've won some item from some giveaway. Block them.
They'll say that their friend tried to add you, but he couldn't. Lie as well.
But they're much more rare now, because Valve made it so you have to spend some money on account, before getting ability to add users. I'm not sure how much is the threshold tho.
Comment has been collapsed.
This!
I do not bother with level 0 steam accounts or if it shows
Comment has been collapsed.
I have seen lvl 6-7 (I guess hacked accounts) too recently (pretending to be some giveaway group bots).
Comment has been collapsed.
Yes, that's so true, there's just no way to know for sure by their levels.
The rule of thumb is simple - never add people to your friends list that you don't know - that's it, that's all - and walla, all these problems are solved in one fell swoop.
Comment has been collapsed.
No need to not add people you don't know. I mean like.. sometimes people add me from the games I've played, for trading and similar. It's just that you shouldn't click the links they give you, or do what they say if you don't know who they are.
Comment has been collapsed.
Yes 5 usd or euro here but people created x accounts before steam added that limitation. I have over 20 acc created for dota 2 beta but i don't use them. Only 2 was active, 1 for trading and 1 for farming :) but with limitations steam add for market, trading and card drop i don't use them anymore. 3 months ago someone changed his name, picture, lvl, he even changed his steam id to my profile id :S to impersonate me. I started to tracking him, but I gave up at his 50 acc. In that 3 day he get over 100usd with my profile (REPORTED on reddit, steamrep and people add me to give them items, money, keys) Funny thing is all accounts are lvl 10+ and all have CSGO. Rest of scammers accounts are lvl 0 - 6 for now. And ofc high lvl accounts with tons of +rep games etc. they ask you to go first and then just delete you from friend list...
But Dnomyar rly how can you trust someone on steam lvl 2 telling you WTF... :) private profiles=block+report.
- tip if you add him and you can see groups in common. leave that group
Comment has been collapsed.
Never thought about it being a bot I guess. Something like this never happened to me before and I never really read anything about it (probably because it never happened to me). But as I said, I thought he wanted to trade, but I'm not sure why I didn't check for the accounts lvl etc. Must have been tired or something.
Comment has been collapsed.
Somehow this never happened to me before. Not sure why, but maybe because I wasn't active in any steam related community or something.
Comment has been collapsed.
Usually, if you have low game count, low steam level, private inventory, stuff like that, bots won't add you. They're fishing for richer accounts.
Also, tf2outpost, csgolounge, sites like that are full of bots, i mean, if you post a trade offer on those sites, you get added by shitload of fake trading bots. At least that's how it used to be.
Comment has been collapsed.
I guess you are right, but to me, my game count is not low at all (for some people it might be low, but for me it is actually really high, about 200 btw).
Comment has been collapsed.
Downloading it doesn't harm your pc, running it does. But as I said, I thought it was a picture, until it downloaded, then I could see the extension.
Comment has been collapsed.
Downloading it doesn't harm your pc
This is not necessarily true. There are exploits that allow code to run without being executed. For example, a while back if you just opened a folder with an infected PDF file, Windows trying to pull the metadata out of it would trigger the exploit and allow the file to run any code it wanted without being opened. This is of course long since patched, but you never know if there could be some other exploit that allows a file to execute code without your consent. It is safer to not download such things if you have any reason to suspect they could be malicious.
Comment has been collapsed.
That's true, unfortunately at the time I was not suspicious at all. But from now on I'll be much more carefull when it comes to random people adding me on steam, even if it is for trading.
Comment has been collapsed.
I'm sure it was .scr file (a screensaver), it's been a longtime way to infect those who willy nilly click EVERYTHING!
The extension is supposed to be for screensavers, but any exactuable can be renamed SCR and run. Hell, most actual screensavers (at least this was the case in the 90's/00's are malware (back then there were actual viruses!), and pretty much killed off the idea of custom screensavers altogether.
Comment has been collapsed.
Wow, what a jumbled mess of language, I lost myself several times up there, but y'all get the point. People see .scr, and they don't think oh noooo virus like they do with EXE files, even BAT is more familiar to many.
Comment has been collapsed.
Usually it's someone's account who's already been hijacked. They've often been set to private though so it's hard to confirm much.
I think the thing that gets a lot of people is that when a friend messages you on Steam with such a link then your first thought is not that they're hijacked. I had someone in my friends list send me one of these, someone who usually sends me various links. This one happened to be a phishing one. Then less than a minute later he sends a message telling me not to click the link because his account is hijacked.
Obviously the ones that fall for a link from a completely random person who they first had to accept an invite from are beyond foolish.
The human element is the weakest link in the defense of an account. The previous trick that used to work well was tempting people with free stuff, like a free Steam game if they entered their account details and password at a phishing site.
Comment has been collapsed.
Also,. not just never open without looking at it, just never open at all, unless you can verify source. There are so many ways to do so as well, HTTPS certificates, md5 hashes and checksums, etc.
Comment has been collapsed.
This on my Steam profile main page to spread the words.
Viruses Phishing Link (More Info on [url=http://steamcommunity.com/discussions/forum/0/624075036365334065/]Steam Community[/url] and [url=https://www.reddit.com/r/DotA2/comments/2enzhh/]Reddit[/url])
Comment has been collapsed.
good one for the novices, please, fix the reddit one :)
Comment has been collapsed.
The link works. You have to edit and remove some words, instead of directly click it here.
- http://steamcommunity.com/discussions/forum/0/624075036365334065
- https://www.reddit.com/r/DotA2/comments/2enzhh
I provide the quote just so someone can easily copy and paste it.
Comment has been collapsed.
yeah, but novice people just click on things, dont copy paste xD
Comment has been collapsed.
Never click on random sites or download files from a stranger.
Comment has been collapsed.
But that would ruin all of my weekends if that was not allowed :(
Comment has been collapsed.
That's right and also block him on Steam and with a message on your Steam activity share the scammers Steam profile to your friends with a warning like: " BLOCK this scammer " so he can't try to scam your friends/other people.
Comment has been collapsed.
Oh. I wouldn't bother trashing my activity page with this. There's really small chance that they'll ever come across this particular scam bot. Warn your friends about this type of scamming is another thing, that can help.
Comment has been collapsed.
These damn scammers really hurt my business of selling custom game-themed screensavers over Steam.
Comment has been collapsed.
Did you try to add random people and then just to get their attention write something like 'WTF?' or 'Is it you on this picture?' and give 'em link to your screensaver? I heard it works perfectly.
Comment has been collapsed.
They've already ruined my brother's trading deals, nobody would trust him now...
Comment has been collapsed.
Never download such files as it only purpose is to infect you computer with viruses and or malware and or to take over your computer. Basic computer knowledge 101. Also sometimes they make long filenames in the hope the victim will not notice the extension of the file.
The scum and filth that are trying to infect you are counting on things like: you don't know any better or you are busy with something else and not paying attention or that you're curious.... Don't give that scum and filth the satisfaction to fall for them!
Also update regulary your OS, JAVA, Adobe software (fe flash player) and the definitions of your AV and anti malware software.
Comment has been collapsed.
WHY WOULD YOU EVEN CLICK THE LINK!?
I get such messages a few times per day. Fuck those scammer fucks.
Comment has been collapsed.
I never got it before, I guess I'm just lucky or something. As I said, I thought it was a picture, but luckily I'm sart enough never to randomly run any executable file.
Comment has been collapsed.
Ever since Steam has implemented trade offers, I have stopped accepting random invites. Mostly ignored, and those who looks like potential scammer are simply blocked.
Comment has been collapsed.
I really wonder why is this no-calling-out rule in effect for bots too…
Comment has been collapsed.
Would it matter if it was allowed? There are thousands of accounts that do this. Not to mention some are compromised.
Comment has been collapsed.
Why do people still click links from a stranger...i suspect these same people would be easy to kidnap in real life..hey look this guy is offering candy i must go see him....wait a minute....ooh crap now i am somebody bitch now ,i think i have been abducted help...
You deserve to get hacked for not using common sense,why do so many throw out common sense when using the net...and driving while we are on the subject
I can edit this not sure if you will notice Dno,i am sorry i did not realize i said you,i meant to say They,as in if they click on stuff like that that they are not sure of the person and from a complete stranger is kinda giving a bit to much trust,if it was someone you knew for a awhile and they did this that would be different,you on the other hand clicked on it from someone you never met,granted you caught it,but sometimes you do not get lucky and catch it.
I did not mean someone deserve to get random hacked either,but my point was if there going to click on links from people they do not know they deserve it,look i do stuff that is not always common sense and i have to pay for those choices,i deserved it for doing them as for every action there is a reaction.
Anyhow my point is simple,if the road is really busy and you need to get to the other side and you can not wait till it safe to cross so you chose to do so when it is not safe and get hit,it is your fault...so maybe i should not say deserve but rather there fault,but in the end i still think people deserve what they get when they make bad choices.
Not deserving would be getting hacked out of no fault of your own not because someone was foolish enough to click on a link.I just do not get why some have complete trust on the internet and throw common sense out the window when it comes to interacting with strangers,makes me wonder if they would be this easy to trick in person.
One more thing this has never been a safe world and never would be,if you let your guard down someone will hit you.Having faith that a lot people are still good is one thing,but to have trust in everyone is a foolish thing.
Comment has been collapsed.
Nobody deserves to get hacked for just clicking a link. And if I didn't have common sense, I would have run the executable. And sorry that I still have some faith left in humanity. Not everyone is a bad person you know.
Comment has been collapsed.
So somebody just added me on steam, so I thought that person might wanted to trade with me, so I accepted the invite. Then not a second later I already got a message saying "WTF" and with a link to something I first believed was an image. So I downloaded it, but I immediatly noticed that it was a windows executable file with the extension ".scr" (or something similar). I of course got very suspicious and when I checked that persons account, I noticed that it was only level 2 and only contained 3 games. So I googled it and found an article about it (about 9 months old). I'm not sure if this is a returning thing or if it just kept happening. Any of you got the same thing?
Also I would like to warn everyone not to open any file before looking at its extension!
Comment has been collapsed.