Use this to help. https://support.steampowered.com/kb_article.php?ref=2347-QDFN-4366.
Comment has been collapsed.
Will I be able to get my account back?
Yes.
Will I lose all my items?
Yes. You probably already lost them.
what should I do?
Contact steam support. Send them any receipt or last key you activated on your account.
They are quite fast :)
Comment has been collapsed.
Then maybe it depends on luck. Some people lost their items :)
Comment has been collapsed.
Talk to steam support about that. You may be able to recover the items. Just letting it go is rewarding hackers.
Comment has been collapsed.
Some people did get all/most of their stuff returned after their inventory was emptied. Perhaps if it's still in the robber's account, it can be returned. I guess that works on a case by case basis. Steam just doesn't guarantee it for obvious reasons, but it's not impossible.
Also, they can't trade away your trading cards for 14 days or something because of the cooldown, so it should be okay. Fingers crossed.
Comment has been collapsed.
When i remember me right is the "we don't restore loosed/robbed items" politic since last year.
Because they normaly double/clone the items and not kill the stolen ones don't question me why, that part i didn't understand and they don't want harm the market because of more items that lower the price for all.
Maybe people used friends lvl 0 accounts for "hiijacking a account" + "steal inventory stuff" and then reported it and have in the end 2x the inventory, 50% for the friend and 150% for themself, win:win for all. Obvious not for steam/valve. Only my thoughts to it from 26 years online experiences. I don't know if people have done that scenario.
Before that date they restored inventory stuff.
So maybe you heared it from "long ago" restored items ?
Comment has been collapsed.
Have hope.
Some people didn't lost everything. Some got their things back. And I just wrote about what I read on forums. Luckily haven't experienced anything like this yet.
Comment has been collapsed.
They will have most likely already sent any giftable item away, if you had authenticator on - even if its removed they wont be able to execute trades until the lockout passes (which goes into effect when the authenticator is removed) - if you didn't have authenticator then you should have a trade wait period in place anyways. The giftable items are another item and those are 99% gone, but if you had purchased them yourself and have the information regarding their purchase you should be able to get them back with the help of steam support, they will do that but you will need to provide all the evidence they require.
Comment has been collapsed.
as long as the page does not contain known malicious code antivirs cannot redirect you from it. Some may but it depends on user reports (some antivirs have reputation system for websites, if a lot of users report page you will get warning when trying to access it), but as they depend on reports when new page appears it willt ake time until enough reports get filled for page to get blacklisted.
Comment has been collapsed.
Did you have mobile authenticator app attached to you account?
Comment has been collapsed.
They must have gotten your Steam Recovery code. That's the only way I could think of that allows them to do that.
Did you connect to this site with your phone? Maybe they got into it.
Comment has been collapsed.
Same here, i won key from user in friend list he send me link to site https://spindatgamex.com/ ther i trie login, and my account was stolen. Send mail to recover
IP from stole my accaunt was 194.67.197.222 (RU)
Comment has been collapsed.
Can you not post a link to a site that steals accounts? Or call out users?
Comment has been collapsed.
No, it need to other peoples to know what exactly site stole accounts to take measures, and know peoples who may related to stole accounts, or is he in your friends and also got a message on this site. Or messages may come on my behalf to peoples in me friend list
Comment has been collapsed.
It's in violation of several site rules and in violation of basic internet courtesies. Keeping part of the site name for constructive reference is likely fine, but direct linking to any kind of problematic site is not only going to get you in trouble, it's just a straight dick move regardless.
Comment has been collapsed.
No, it need to other peoples to know what exactly site stole accounts to take measures..
Other people have given warnings and advice regarding the account thefts, all without violating our rules. Telling us that someone's account seems to have been taken over by a bot would have probably been OK. Telling us about a specific message being sent by that bot would have been OK. Accusing someone of hacking or stealing other people's accounts is not OK. Disclosing other people's IP number is not OK. Posting a link that will probably harm anyone clicking on it is not OK.
Other people tried to warn you, but you failed to listen and correct your post. That means our Support Staff is now forced to take measures. Please review the site Guidelines and FAQ during your time out.
Comment has been collapsed.
Hi! I dont understand something... He brokes the rules, yeah, its completily understand that, and recive a suspencion, ok, now, yesterday I see a thread about something (not essencial but), and a lot of mesages form 2 or 3 users insulting themself... but I dont see that users are suspended,
I think, they broke a lots of rules, they call out, the insult, etc...
I recive a mesaje from one of the hacked accounts, and aboid it, becouse, i always do the reserch first, and I hate the spam...
But there maybe a lot of us, that, like me, dindt know about the hacked accounts until now...
So, my basic question is, why you choose when to apply the suspencion to the broke rules in less than an hour, and when you dont take any action to other rules brokers...
(sorry for my basic and bad, to bad english)
Comment has been collapsed.
I think, they broke a lots of rules, they call out, the insult, etc...
Some users take the time to call our attention to rule-breaking by creating a Support ticket. We investigate all such tickets when we have the time to do so. As for those incidents which are not reported, we deal with them when we find them.
So, my basic question is, why you choose when to apply the suspencion to the broke rules in less than an hour, and when you dont take any action to other rules brokers...
There will always be people who "break the rules." Some of them do it out of ignorance, and some of them do it knowingly. When someone is caught doing it, they are usually punished. It is not possible, however, for the police to be everywhere at all times. The man who runs a red light in front of a policeman should not be surprised when he gets pulled over for it.
In SteamGifts, it is common for Support Staff to read any thread which seems to highlight an issue or problem for our users in the hope that we may be helpful (if possible). That makes it highly likely that any misbehavior within such threads will be noticed by Support Staff.. In this case, the guy had over an hour to correct himself, and was prompted to do so by other members of the community. He did not listen to them.
Comment has been collapsed.
thanks for the reply!.
Hope you understand my bad english.
yes! i know you guys work hard here!, just call my attention the "dilema" from yesterday.
personally I dont like the discusion, here on the internet, not even in my real life.
and now we have a lots of accounts hackeds... Im still reciving mesajes on steam chat, I just ignore them and hope, these users can recover theirs accounts
So, thanks for taking your time to replying me
Comment has been collapsed.
While I agree you can't call out, in this case the compromised users are not at fault, they are also victims, so it "kind" of makes sense to say it.
If a mod disagrees, of course we have to remove the users' names.
Comment has been collapsed.
Sorry about that mate. Half asleep this morning and followed a link from a friend and lost my account as well.
Good news is that the password change and authenticator removal should trigger a 15 day cooldown so hopefully we wont loose anything.
Comment has been collapsed.
why you call out users who are in the same boat like you?
Comment has been collapsed.
"Of course, it would be less trouble if people would just check the URL of pages where they're entering their credentials, but apparently that's just too much to ask..."
And you are mister perfect who has never made a mistake in his life.
Apart from that last arrogant sentence, I agree with everything else you said.
Comment has been collapsed.
I trusted the dude who sent me the link.
That's exactly what these kind of scams are banking on. People getting the link from a friend are more likely to trust it.
Comment has been collapsed.
"seems appropriate security-wise" actually no its still calling out., your behavior is absolute hypocrite.
Comment has been collapsed.
It is, in fact, calling out. Posting the site and user information was unnecessary.
Comment has been collapsed.
but now the user is suspended and can't delete the information
Comment has been collapsed.
Let us hope that he cleans things up when he returns.
Comment has been collapsed.
not that I want to tell you how you should do your job, but wouldn't it better to let him clean up before, and then suspend him?
Comment has been collapsed.
I've been saying that for a while. The current system is moronic.
Rather than end the damage after an hour when the user can delete it themselves they ensure the violating content stays up for days.
Either delete the content that is so outrageous that you need to suspend the user when you do, or don't go out of your way to ensure it stays up for as long as possible.
Comment has been collapsed.
The best scenario would have involved him cleaning it up when the mistake was pointed out, thereby avoiding suspension.
Comment has been collapsed.
obviously, but he clearly didn't understand what the problem was
we would live in a better world if people would always read and follow the rules
Comment has been collapsed.
The user's account was likely hacked same as yours. Now your account is sending links to people too, so it's a little unfair to call out specific users who had no part in it. :P He just fell for the same crap that you did. You should remove his SG profile from your post, imo.
Comment has been collapsed.
Thanks for posting this, I just got three messages in a row from someone I apparently traded with at some point all linking to that site. Seemed extremely suspicious so did a search on google and found your post.
Comment has been collapsed.
Please edit your post to remove the link to the scam site.
Comment has been collapsed.
To people who had their account stolen like me, you may have received an email that your mobile authenticator was removed using an sms code that was sent to your phone. Obviously you didn't receive it. I'm not sure if I can guarantee that they didn't intercept that sms somehow but based on my mobile account the text message never occurred. I'm not sure if it didn't appear in my text history because it was intercepted or because there was no text. Can anyone with more knowledge than me verify whether or not our phone numbers are safe?
Comment has been collapsed.
That is right, I just moved to another phone and it was a pain in the butt... ^^
Comment has been collapsed.
Just fyi, your account is already sending out messages advertising scam sites. I've got three messages from it already.
Comment has been collapsed.
https://www.scamadviser.com/ to check unknown sites could be useful
Comment has been collapsed.
Our dear friends RevvedUp & BreadMan were hacked :((
All our hopes & wishes go towards you guys ! :D i hope you guys get it on time before those darn hackers indian/ruski/asian hackers get to do more shady stuff with ur ids or like get u VAC ban in CS:GO etc :( ufff...
But how is it possible , they can bypass SteamGuard mobile auth etc?? :( anyone has more insight on the matter?
Btw bro i had that message from you like 3 times but u offline now
and from bread like 5 times already xD i won't ignore you guys but oh well,gotta be careful to not click those ^_^
Comment has been collapsed.
sorry to say it so clear but they don't get hacked.
They posted at this shady site there login + password because they thought they are at the steampage and haven't checked the https:www..... adress.
Count 1 and 1 together and you know why they got hijacked.
I wish them the best for there accounts but this common way haven't anything to do with hacking peoples accounts.
Comment has been collapsed.
i always use STEAM IN-Game browser for loging in on sites that might require my steam, BECAUSE xD Steam is ALREADY , ALWAYS Logged in , in the in-game browser :D ( very rarely if internet disconects etc or u switch ip / switch internet like from wifi/fibre cable to internet from mobile phone etc ,has to re-login and it does automatically in 1-2 seconds :D
I always use Steam i n-game browser for steamgifts/ sites that need my steam login , because of Security + Can't be arsed to login in firefox :D.
And ppl should always login using Windows On-Screen Keyboard, if paranoid vs keyloggers :P
Like Damon Salvatore said , " paranoid? let's call it healthy skepticism " :D , you can try use On-SCreen Keyboard , increase it's window size + move it on your screen a bit,only then type ur id/pw :D , u can even add a few extras, then click with mouse & delete wrong characters purposefully placed :D
Comment has been collapsed.
Nah i don't use onscreen keyboard, type wrong and delete letters. Thats a bit too much.
Use a Antivir Program prefered a payed version from the original source, Update your system and system components, look 2 or 3 times at sited that sounds "too good to be true" and don't trust steam "friends" blindly or type your login and password, without checking and sleepy, at some random sites.
It's shocking how much don't look on the most basic security stuff.
Easy to see by the fact how much people are now hijacked from this one site and in which time.
Comment has been collapsed.
i agree :D i dont always do that but i very rarely need to login somewhere :P
++ As i said,safest is to use IN-Game browser ;D not only saves u the login or having saved info on browser mozilla firefox et c
but also we are ALWAYS Logged in, on In-Game Browser, that's how you can tell fake sites from true ones :D
steam will never ask u to login ,when u use in-game steam browser :D
Comment has been collapsed.
Yep I got messaged by RevvedUp multiple times in a row, all linking to the scam site someone posted above. My account is fine thankfully since I didn't log in (sites claims were way too suspicious).
Comment has been collapsed.
Use a password manager and you'll avoid these kind of problems (the password manager won't auto-fill your login info if the URL doesn't match), also it'll also make it easy to have a different password (and more secure ones) for each site, increasing your security even more.
Comment has been collapsed.
Report the site at:
Comment has been collapsed.
thanks for that , done it b'cause few of my friends seems to be "infected"
Comment has been collapsed.
That sucks. :( Just got hit by that bot from your account had to unfriend you. Reported it, hopefully you get it back soon. :)
Comment has been collapsed.
The link is rated 6% safe when I looked it up lol.
Comment has been collapsed.
Yeah i didn't think twice about it since I know the guy and all. Or rather didn't realize he was compromised. Sure didn't help that I was exhausted from a sleepless night when I saw the message. Only reason I didn't second guess the site was cuz when the game I "won" rolled it was something I and lots of people already owned so I figured it was just another giveaway site.
Comment has been collapsed.
Create ticket, and wait! https://help.steampowered.com/en/wizard/HelpWithAccountStolen
Steam are responsibles for this security bug hack
I created ticket 10 hour ago and nothing
Comment has been collapsed.
after this, just dont forget NOT to click some dubious link (usually you can hover it a read it, for precaution)
also make use of 2FA, that's a must
Comment has been collapsed.
I wish people would stop saying that they "got hacked" because no, they didn't get hacked, they mindlessly entered their login information in a malicious site and basically given the "hackers" everything they need to access and take control of their account, nobody had to work for it to get their account info because they handed it to them themselves.
I will never understand why it seems so hard to double check links via Google before mindlessly clicking on them let alone putting in your details. Everyone who falls for stuff like this is so blinded by the idea that they're getting something for free that they don't even take a second to think whether or not it might be fake. I mean, if it was the early years of the internet I'd get it but it's 2019 and sadly, people still fall for this stuff and then wonder why their accounts get compromised.
Comment has been collapsed.
Call it whatever you want but I stand by my opinion. =)
Lucky for you, your friend, and everyone else who fell for scams like this, Steam seems to be pretty good when it comes to recovering people's accounts, even if it might take a bit sometimes, so you'll probably have your account back soon if you haven't yet. Lesson learned I guess.
Comment has been collapsed.
Exactly. I am willing to admit the mistake was mine. Just took it to offense they way you worded that (and im a bit on edge after all this, im sure you realize that). Lesson learned indeed. Got too used to seeing free game sites with all of the stuff that gets posted in the reddit and discussions here I didn't think twice. Hopefully a week without my steam games is all it will cost me :)
Comment has been collapsed.
Glad to see you back!
I figured you had gotten it resolved since you were no longer sending the messages. Alas, 3 more friends are still sending the messages, and I got one from another friend that must have just gotten hijacked (so four still-compromised friends). :(
Comment has been collapsed.
2FA will help prevent this correct? I was curious enough to click the link, but the site seemed super fake (especially since the language was locked in Russian despite being in English) and didnāt put my info in there, am I safe?
Edit: oh, sounds like op had 2FA as well but it got disabled?
Comment has been collapsed.
Ah, okay. I was logged in in another tab, so I figured if it were real, I would already be logged in. Then I looked at the URL, which was just blank for me, and then noticed the ālanguageā option that couldnāt be changed...
Comment has been collapsed.
6 Comments - Last post 4 minutes ago by spodamayn
1,426 Comments - Last post 18 minutes ago by maximilyn
446 Comments - Last post 30 minutes ago by MeguminShiro
24 Comments - Last post 1 hour ago by HappierParsley
1,164 Comments - Last post 1 hour ago by bniky95
46,833 Comments - Last post 2 hours ago by MeguminShiro
22 Comments - Last post 2 hours ago by Gamy7
28 Comments - Last post 8 minutes ago by adam1224
86 Comments - Last post 21 minutes ago by ConanOLion
144 Comments - Last post 24 minutes ago by OneNonLy
58 Comments - Last post 24 minutes ago by UnbakedBacon
26,557 Comments - Last post 42 minutes ago by Mirozan
0 Comments - Created 46 minutes ago by ParasiteEve
203 Comments - Last post 1 hour ago by Swordoffury
Apparently one of my friend on steam got their account hack and they impersonated that person to get my account hacked. I'm kinda panicking right now? Will I be able to get my account back? Will I lose all my items? what should I do? Also not sure if its safe to post the person's profile in this thread so I won't for the time being. Anyone else have this before? I'm really scared.
Comment has been collapsed.