All Discussions > Steam Forums > Steam Discussions > Topic Details
This topic has been locked
Ace Aug 28, 2023 @ 5:34am
Just opened email account and got dozens of emails saying I've sold my steam items
Hello, so I logged on my email today and found dozens of emails from steam saying that I've sold items for 0,01$. This immediately dragged my attention as I do not remember listing all my items for sale, let alone for that price. When I logged on my steam account, I found all my cards and emojis gone, along with my profile background(which later returned oddly). When I logged onto my phone and later browser, the language was set to Chinese and it was difficult to navigate it. After doing a little research, looking through my market history, I found the buyers but more importantly I found a "seller" that sold me a card in exchange for all the money made from those
minuscule transactions.
When I looked up his account, it wasnt even set up. I reported it but don't know what else I can do about it. Not sure if I am allowed to share it.

I have no idea how this happened since I never shared informations about my account to anyone.
All I know is that I've installed a plugin on chrome and another program yesterday by the time those deals happened.
< >
Showing 1-10 of 10 comments
BJWyler Aug 28, 2023 @ 5:42am 
Your account is compromised. At some point down the line you did share your log in information with a scammer, either by falling for a common scam, such as Vote for my Team, or you visited a third party website that captured that information. It could have happened weeks or months ago as they typically sit on accounts for a while before striking.
#1
peppermint hollows Aug 28, 2023 @ 5:42am 
Follow these steps immediately to secure your account:
1. Scan for malware. https://www.malwarebytes.com/
2. Check that the email and phone number on the Steam account are still yours.
3. Deauthorize all other devices. https://store.steampowered.com/twofactor/manage
4. Change passwords from a clean computer.
5. Generate new backup codes for your Mobile App. https://store.steampowered.com/twofactor/manage
6. Revoke the API key (there should be no key). https://steamcommunity.com/dev/apikey

Even though you say you never shared your information, if your account was properly secured then the only way that could have happened is if you leaked your credentials somewhere. Even if it was unknowingly logging into a phishing site or a third party website which asks for your Steam login.
#2
Crazy Tiger Aug 28, 2023 @ 5:42am 
You got phished or you have malware. It's either of the two.

If you still have access to the account:
Originally posted by Crazy Tiger:
Phishing is the most likely cause, OP. When people get phished, they give out the account name, password and then active guard code. A bot quickly enters it and hijackers have access then. Ultimately 2FA is "just another code" that can be given away when getting phished. It's not a magical defense layer.

Have you secured your account? If not:
- Scan for malware. https://www.malwarebytes.com/
- Deauthorize all devices https://store.steampowered.com/twofactor/manage
- Change your password on a secure device.
- Generate new back up codes. https://store.steampowered.com/twofactor/manage
- Revoke the api key https://steamcommunity.com/dev/apikey

Find out how you leaked your credentials. Phishing and malware are the two ways it happens, phishing is the most likely one. Either way, find out how you leaked your credentials.

Items are gone, they do not get returned nor will you get money back for them. The item restoration policy: https://support.steampowered.com/kb_article.php?ref=9958-MJDG-3003

Not all items require confirmation. https://steamcommunity.com/groups/community_market/announcements/detail/1705067494681435160

If you don't have access to the account:
Originally posted by Crazy Tiger:
Recover the account, use the guide: https://steamcommunity.com/sharedfiles/filedetails/?id=1126288560

Start here and don't be logged in on any Steam account: https://help.steampowered.com/en/wizard/HelpWithLogin
If Step 1 is not possible, proceed from Step 2. Along the way you can mention you don't have access to the email, phone, etc. Might need to enter a bogus one a few times to get that option.
At the end of the guide you'll make your ticket to Support. They'll tell you what proofs they want, often they ask first things (first email, first key activated on account, first payment method used, etc).

Do read up on phishing, as that's the most likely way to get an account hijacked. Malware is a second.
#3
Ace Aug 28, 2023 @ 6:17am 
Originally posted by BJWyler:
Your account is compromised. At some point down the line you did share your log in information with a scammer, either by falling for a common scam, such as Vote for my Team, or you visited a third party website that captured that information. It could have happened weeks or months ago as they typically sit on accounts for a while before striking.

Yeah I think that's most likely the scenario. Could have been a shady ad/website even though I use ad blocker. I forgot to mention that google has warned me for some time that some of the passwords I have stored are compromised, but I ignored it. Don't know if my steam pass was also included on that list.

Originally posted by peppermint hollows:
Follow these steps immediately to secure your account:
1. Scan for malware. https://www.malwarebytes.com/
2. Check that the email and phone number on the Steam account are still yours.
3. Deauthorize all other devices. https://store.steampowered.com/twofactor/manage
4. Change passwords from a clean computer.
5. Generate new backup codes for your Mobile App. https://store.steampowered.com/twofactor/manage
6. Revoke the API key (there should be no key). https://steamcommunity.com/dev/apikey

Even though you say you never shared your information, if your account was properly secured then the only way that could have happened is if you leaked your credentials somewhere. Even if it was unknowingly logging into a phishing site or a third party website which asks for your Steam login.

Scanned and removed 20 viruses that were found. Apparently the email&phone number isn't changed. I've deauthorized all other devices and relogged on my phone. Didn't change password yet as I'm not sure whether to do it on my phone or PC. Also generated a list of backup codes.
And I don't think I have a API key. Thanks for all your feedback.

Originally posted by Crazy Tiger:
You got phished or you have malware. It's either of the two.

If you still have access to the account:

If you don't have access to the account:
Well, I can log on steam using my phone, and I checked the email&phone number and they aren't changed. Hope that's all.
#4
Lilim Aug 28, 2023 @ 6:21am 
Originally posted by Ace:
And I don't think I have a API key.

Why don't you just check it? Just to be sure :hp_kyu:.

https://steamcommunity.com/dev/apikey
Last edited by Lilim; Aug 28, 2023 @ 6:22am
#5
Ace Aug 28, 2023 @ 6:23am 
I accessed the link and got this: "Register for a new Steam Web API Key
Registering for a Steam Web API Key will enable you to access many Steam features from your own website."
Am I clear?
#6
Lilim Aug 28, 2023 @ 6:33am 
Originally posted by Ace:
Am I clear?

Yes :cupup:.
#7
ruysan Dec 7, 2024 @ 3:24pm 
Just happened to me too.
#8
Stevanator Dec 7, 2024 @ 3:26pm 
Originally posted by BJWyler:
Your account is compromised. At some point down the line you did share your log in information with a scammer, either by falling for a common scam, such as Vote for my Team, or you visited a third party website that captured that information. It could have happened weeks or months ago as they typically sit on accounts for a while before striking.

youre not a moderator
#9
Rex Dec 7, 2024 @ 7:12pm 
This thread was quite old before the recent post, so we're locking it to prevent confusion.
#10
< >
Showing 1-10 of 10 comments
Per page: 1530 50

All Discussions > Steam Forums > Steam Discussions > Topic Details
Date Posted: Aug 28, 2023 @ 5:34am
Posts: 10
Start a New Discussion

Discussions Rules and Guidelines