From my understanding there has been a great increase in adds from phishers/hijackers, messaging something such as 'Hi. My friend want to trade with you. (phishing link) Add him.', and the like. I've a theory on how exactly they go about the phishing and why there's an increase in them.I'm just curious as to what you guys think about my theory on it, or maybe just the situation in general, and if you can shed some light on the situation. My theory may be far from perfect, but here I go:How they hijack the accounts
The said phishers/hijackers use accounts that have previously been hijacked. They're then programmed to add the person who made the most recent trade on TF2Outpost, and probably other trading sites as well such as Bazaar.tf/Dota2Outpost
(not too sure), sending an automated message with a phishing link, then remove friend a few minutes later to move onto the next guy.
If the victim clicks on the link and tries to log in on the site the account gets stolen a few minutes later (captain obvious approves of this statement). Upon attempting to log in, they're told there's some sort of error, and they need to upload a file, which has the Steam Guard details (etc.). This is how the phishers/hijackers get past the Steam Guard as they obtain the victim's Steam Guard details (to put it vaguely).Why are there so many recently?
I'm not 100% sure. Maybe not even 75%, but it's possible that it started out with a few guys doing the same phishing/hijacking process, but with their own alts. Some people fell for them, lost their accounts, then the compromised accounts were used to do the same thing via some sort of bot. It's like a big long chain of hijacked accounts attempting to hijack other accounts, with the amount of accounts getting hijacked becoming greater, and continues to do so to this day.
So yeah...that's it I guess. If there's anything overly vague, or flawed (or whatever) in my theory, feel free to comment on it. I know some parts seem like common knowledge to know, but I didn't want to miss out any details, and it'd be great if I could get some additional info I should be aware of. Lastly, I haven't seen any other discussion regarding the recent increase of phishers/hijackers, but if there is then sorry for the possibly duplicate thread.