All Discussions > Steam Forums > Steam Discussions > Topic Details
I.N. Jul 17, 2019 @ 5:20pm
think i got hacked LMAO
<EDIT : Link>

so yesterday i was playing some games from my library when i receive a message from a friend of mine. When i opened the message my friend had texted "yo Just created new team could you please vote for us?"

i replied back telling him that i would because he is my friend, and he would text back to all the things i would tell him so i thought it was safe. when i opened the website it seemed pretty cool and safe so i decided to create an account. As soon as you creat an account the website would ask you to link your steam account to the website and i thought well ik a lot of websites require this when its steam related, so why not. As soon as i create the account i was surprised to being taken to a screen that said sorry website is under maintenance .

When i texted my friend about he said oh ok well ill text you tommorow see if the site has finish the maintenance. So just today i noticed that he hadnt text back so i was like well i guess i wont vote for the team. Suddenly i was surprised to see that a few friends had texted me , when i opened the texts apperently a few hours before i logged in today i had a conversation with a lot of my friends telling them "Just created new team could you please vote for us?" (i think the team was cringe boys)

The conversation seemed so real, cause apperently i had actually texted them back and responding to them and was trying to convince them to make an account and vote for me and in some cases my friends had created the account only to be taken to the same screen saying the website is under maintenance

PLEASE REPORT THIS WEB SITE " <EDIT : Link> "

if someone sents you this do not open it and well if you did then :(

changed my password and email so im hoping that fixed the issue, but if it didnt then i might have to delete this account cause, maybe i have games and have been in this account for 2+ years but i dont feel comfortable knowing someone else has access to this account and didnt even have to go through the steam mobile authorisation to gain access to it

ALSO sorry my grammar is way off today :( report the link please
Last edited by Fox; Jul 18, 2019 @ 6:22am
< >
Showing 1-15 of 37 comments
8ullfrog Jul 17, 2019 @ 6:08pm 
LOL. Safe & Legal - Checked by Steam.

Please nuke that link from orbit, this is fake as hell.

Flavor text from fakesite.scamhole

Hello! Anybody down for a game? We're already 4!

Yo dude. I'm always up for a game. But I'm new here.

It's all fine we still can play with you.

This reminds me of the curiously ruskie engrish you find on dodgy streaming sites.

For example,
We just make sure, rest of experience will load nice and fast

It's almost caveman speak.

"We no scam, always can you trust Thog."
Last edited by 8ullfrog; Jul 17, 2019 @ 6:12pm
#1
The Giving One Jul 17, 2019 @ 6:48pm 
Originally posted by LFGI.N.:
when i opened the website it seemed pretty cool and safe so i decided to create an account.
So this is a case of phising, not hacking.

You freely gave away your account login credentials, according to the story. Sadly, we see that here daily, pretty much.


Actions to take NOW :

https://steamcommunity.com/discussions/forum/1/1738841319818795963/#c1738841319818809268

If the account is used to cheat in any games, that might earn the account a ban, so you need to get ahead of this quickly. If you still have access to the account, then ignore this sentence.

EDIT.............

OH, and see the "LINK REMOVED" above ? That means the site is already a known issue here. It has already been added to the filters.

However, you should remove the other link also, please.
Last edited by The Giving One; Jul 17, 2019 @ 6:54pm
#2
Zekiran Jul 17, 2019 @ 7:01pm 
Please remove the link and name of the scam site, you're only serving to advertise for them.
#3
8ullfrog Jul 17, 2019 @ 10:48pm 
I reported it twice, no action yet.
#4
Zekiran Jul 17, 2019 @ 11:35pm 
Originally posted by 8ullfrog:
I reported it twice, no action yet.


you realize that 'reporting' things will put your report at the back of the line, just do it once, and never again.

They deal with thousands of these reports daily.

Also, OP, you still haven't removed your advertisement for the scam site... one might think you're shilling for em, which of course you're not, right?
#5
8ullfrog Jul 17, 2019 @ 11:42pm 
Really? I know if I filed a support ticket, a report would be pushed back, but I thought post reports were just like flags that went into an admin queue.

Then again, that Dr. Phil weirdo used a spelling error to get around the word filter on R A P E, and his thread is still going in offtopic.
#6
bryanmarqs Jul 17, 2019 @ 11:49pm 
Yes boy
#7
Dead Miside Jul 18, 2019 @ 12:34am 
The site is using an iframe "draggable-resizable" window-like element to imitate a new browser window with "steamcommunity" page. It looks like a window at first, but it's easy to see that it's just an interactive element inside the page. This is why checking the address for spelling doesn't help, since it's not an address at all, but just a text string.
#8
Firefly Jul 18, 2019 @ 3:26am 
you say you got hacked then post a suspicious link at the start of your thread.... report incoming
#9
ShelLuser Jul 18, 2019 @ 4:55am 
I seriously fail to understand how anyone could fall for this trick. If you click "sign up for free" you see a text which mentions that you agree to their Terms & Privacy policy. The text is in a different color yet it's not a link. So how are you supposed to know what you're agreeing to? That should be your first hint.

Second... the so called Steam logon is hilarious. That looks fake as heck.

If a site is using Steam for legit verification purposes then you never have to provide your username & password as long as you're already logged into Steam. Best you do is click login, Steam will recognize you and ask you if you want to log into that website, you do this by clicking "yes".

That's it, that's all.
#10
TangOscar Jul 18, 2019 @ 5:08am 
Originally posted by ShelLuser:
I seriously fail to understand how anyone could fall for this trick. If you click "sign up for free" you see a text which mentions that you agree to their Terms & Privacy policy. The text is in a different color yet it's not a link. So how are you supposed to know what you're agreeing to? That should be your first hint.

Second... the so called Steam logon is hilarious. That looks fake as heck.

If a site is using Steam for legit verification purposes then you never have to provide your username & password as long as you're already logged into Steam. Best you do is click login, Steam will recognize you and ask you if you want to log into that website, you do this by clicking "yes".

That's it, that's all.
I asked that question myself once and came to the following conclusion:

For the first part: If noone have taught you, or shown you, that a tiger is a predator and not a pet, you would run towards it and try to pet it -and surprised afterward, if you have survived, that it attacked you. Answer: Missing knowledge, leads to such stupid decisions.

Your second part: We logon at tons of websides with an account, and some of them are shared. Again, missing knoledge: No one mentioned that you have to use your steam account, for steam client/official website only.
Last edited by TangOscar; Jul 18, 2019 @ 5:27am
#11
ShelLuser Jul 18, 2019 @ 5:14am 
Originally posted by TangOscar_AUT:
No one mentioned that you have to use your steam account, for steam client/official website only.
Uhm, yes they do?

If you click any external link on Steam you first see a warning page saying that you're "Leaving Steam", then you get to see this:

https://*.*/ is not an official Steam site.
Never enter your Steam password on an untrusted website. Any login form on an official Steam site will display “Valve Corp.” in green with a padlock icon in your browser’s address bar, as shown below:
Notice the "Never enter your Steam password on an untrusted website"? As well as the padlock comments on your browsers address bar?

The warnings are all over the place, the real problem is that people don't pay any attention to them.
#12
TangOscar Jul 18, 2019 @ 5:25am 
Originally posted by ShelLuser:
Originally posted by TangOscar_AUT:
No one mentioned that you have to use your steam account, for steam client/official website only.
Uhm, yes they do?

If you click any external link on Steam you first see a warning page saying that you're "Leaving Steam", then you get to see this:

https://*.*/ is not an official Steam site.
Never enter your Steam password on an untrusted website. Any login form on an official Steam site will display “Valve Corp.” in green with a padlock icon in your browser’s address bar, as shown below:
Notice the "Never enter your Steam password on an untrusted website"? As well as the padlock comments on your browsers address bar?

The warnings are all over the place, the real problem is that people don't pay any attention to them.
Ha! True, totally forgotten that. My fault, thank you for pointing that out.
#13
Overseer Jul 18, 2019 @ 6:13am 
Originally posted by TangOscar_AUT:
For the first part: If noone have taught you, or shown you, that a tiger is a predator and not a pet, you would run towards it and try to pet it -and surprised afterward, if you have survived, that it attacked you. Answer: Missing knowledge, leads to such stupid decisions.
I am sorry but that makes absolute no sense. Survival Instincts and the predators behaviour would interfere before anything you try to describe would happen. Missing knowledge leads to a very careful approach in the physical world for as long as other living beings are involved.
However all of that changes drastically the moment inanimate objects come into play.

If anything its this ongoing story of a lack of media literacy. Being competent at evaluating data on display requires training, even more so when other human beings create content to fool others. Its far more complex than being scared of a predator that has the potential to physically harm you.
And i don't think we or Valve here can solve this. But i recommend to forward these malicious links to google: https://safebrowsing.google.com/safebrowsing/report_phish/?hl=en
That way experts can analyze the data and add the site to a blacklist for webbrowsers.
More info here: https://safebrowsing.google.com/
#14
I.N. Jul 18, 2019 @ 12:48pm 
Ooooo thank you so much guys
#15
< >
Showing 1-15 of 37 comments
Per page: 1530 50

All Discussions > Steam Forums > Steam Discussions > Topic Details
Date Posted: Jul 17, 2019 @ 5:20pm
Posts: 37
Start a New Discussion

Discussions Rules and Guidelines