There is A LOT of info about these scams. They are happening daily. And yes, you did get phished, nobody hacks Steam Accounts.

Either that or there's Malware/Keyloggers/what have you on your PC while you were logging in.

What I think happened is that malware copied my session token which was then used to sell my items. Both Avast and Malwarebytes didnt find anything, but I still think it had to be malware. Account balance was then spent on some cheap item, bought for very expensive price. I also didnt get anything to my mailbox except emails that I traded items. Later on I found out in account history that the account was from Honk Kong and the whole login time was 1 second.

If you are future victim and you care about your items there is not much you can do. Steam is by default not returning stolen items, because they would create a duplicity. Someone here on forum said that after 3rd dispite with steam support, his items were recovered, but I cant say if its true or false. Take my case as a warning and log off from browser!

Originally posted by Unn4m3d (♥AUT♥):

There is A LOT of info about these scams. They are happening daily. And yes, you did get phished, nobody hacks Steam Accounts.

Either that or there's Malware/Keyloggers/what have you on your PC while you were logging in.

About scams getting over 2FA? Not really. One thread on this forum. I got phished? I dont know about you, but my definition of phishing is giving away your info because of something. I didnt give anything away. What I think happened is that someone copied my session token.

Originally posted by Unn4m3d (♥AUT♥):

There is A LOT of info about these scams. They are happening daily. And yes, you did get phished, nobody hacks Steam Accounts.

Either that or there's Malware/Keyloggers/what have you on your PC while you were logging in.

and where the hell I mentioned I got "hacked". I used hijacked, which happened. You steam community forum dwellers are really different breed.

Originally posted by Daron:

Originally posted by Unn4m3d (♥AUT♥):

There is A LOT of info about these scams. They are happening daily. And yes, you did get phished, nobody hacks Steam Accounts.

Either that or there's Malware/Keyloggers/what have you on your PC while you were logging in.

About scams getting over 2FA? Not really. One thread on this forum. I got phished? I dont know about you, but my definition of phishing is giving away your info because of something. I didnt give anything away. What I think happened is that someone copied my session token.

Yes, that's what they all say. Usually it happens through logging in on some scam website.

Originally posted by Daron:

Originally posted by Unn4m3d (♥AUT♥):

There is A LOT of info about these scams. They are happening daily. And yes, you did get phished, nobody hacks Steam Accounts.

Either that or there's Malware/Keyloggers/what have you on your PC while you were logging in.

and where the hell I mentioned I got "hacked". I used hijacked, which happened. You steam community forum dwellers are really different breed.

You didnt, but I pointed it out anyway. Also: there's no need for multiposting, you can Edit your posts.



EDIT:
You should also follow these steps:

Deauthorize all devices https://store.steampowered.com/twofactor/manage
Change your password on a secure device.
Generate new back up codes. https://store.steampowered.com/twofactor/manage
Revoke the api key https://steamcommunity.com/dev/apikey

Originally posted by Unn4m3d (♥AUT♥):

Originally posted by Daron:

About scams getting over 2FA? Not really. One thread on this forum. I got phished? I dont know about you, but my definition of phishing is giving away your info because of something. I didnt give anything away. What I think happened is that someone copied my session token.

Yes, that's what they all say. Usually it happens through logging in on some scam website.

Dude, I was literally in the previous thread about this with you. How ignorant can you be. If I got phished, I wouldnt create another thread about it. What happened is that I installed some files that could potentially be infected. Copying session tokens is not uncommon, I just got unlucky.
Really, I am just going to ignore you. Not really here to argue, with some rando who is full of himself and thinks he is better than others without knowing the details. Watch video from LinusTechTips and how dude got over his 2FA.

Originally posted by Daron:

Originally posted by Unn4m3d (♥AUT♥):

Yes, that's what they all say. Usually it happens through logging in on some scam website.

Dude, I was literally in the previous thread about this with you. How ignorant can you be. If I got phished, I wouldnt create another thread about it. What happened is that I installed some files that could potentially be infected. Copying session tokens is not uncommon, I just got unlucky.
Really, I am just going to ignore you. Not really here to argue, with some rando who is full of himself and thinks he is better than others without knowing the details. Watch video from LinusTechTips and how dude got over his 2FA.

You didn't get unlucky, you were careless. Thats a huge difference.

Originally posted by Unn4m3d (♥AUT♥):

Originally posted by Daron:

Dude, I was literally in the previous thread about this with you. How ignorant can you be. If I got phished, I wouldnt create another thread about it. What happened is that I installed some files that could potentially be infected. Copying session tokens is not uncommon, I just got unlucky.
Really, I am just going to ignore you. Not really here to argue, with some rando who is full of himself and thinks he is better than others without knowing the details. Watch video from LinusTechTips and how dude got over his 2FA.

You didn't get unlucky, you were careless. Thats a huge difference.

Did I ask? Go touch grass or something, you will do both of us a huge favor. Or is creating arguments with people on internet forums your hobby?

Originally posted by Daron:

Originally posted by Unn4m3d (♥AUT♥):

There is A LOT of info about these scams. They are happening daily. And yes, you did get phished, nobody hacks Steam Accounts.

Either that or there's Malware/Keyloggers/what have you on your PC while you were logging in.

About scams getting over 2FA? Not really. One thread on this forum. I got phished? I dont know about you, but my definition of phishing is giving away your info because of something. I didnt give anything away. What I think happened is that someone copied my session token.

The recognised definition of phishing is:- ''Phishing is a form of social engineering where attackers deceive people into revealing sensitive information or installing malware such as ransomware''

So basically you admitted to installing tailored malware material which is an arm of phishing. You've just proved exactly what we've been saying for days. Your case is nothing new or revolutionary - this was absolutely rife back in 2014 and even with far more advanced security in place, you've fallen for what is a vintage scam.

Originally posted by Daron:

Originally posted by Unn4m3d (♥AUT♥):

You didn't get unlucky, you were careless. Thats a huge difference.

Did I ask? Go touch grass or something, you will do both of us a huge favor. Or is creating arguments with people on internet forums your hobby?

Stating facts isnt "starting arguments", unless you plan to do so by refusing these facts, but this is up to you.

Originally posted by J4MESOX4D:

Originally posted by Daron:

About scams getting over 2FA? Not really. One thread on this forum. I got phished? I dont know about you, but my definition of phishing is giving away your info because of something. I didnt give anything away. What I think happened is that someone copied my session token.

The recognised definition of phishing is:- ''Phishing is a form of social engineering where attackers deceive people into revealing sensitive information or installing malware such as ransomware''

So basically you admitted to installing tailored malware material which is an arm of phishing. You've just proved exactly what we've been saying for days. Your case is nothing new or revolutionary - this was absolutely rife back in 2014 and even with far more advanced security in place, you've fallen for what is a vintage scam.

By adding another "I am better than you. I need to tell you this or I wont fall asleep tonight" comment, this time into completely new thread that I didnt tag you in, you admitted that you are not getting laid James. And that is something thats around since like before 10.000BC. Much worse than my malware my dude.
Anyway, not replying to you. Get your self validation elsewhere.

note: there will be more of these "malware stealing session tokens" assumption threads popping up because that is how LTT got their youtube channels compromised. that exact method doesn't work with Steam though.

Originally posted by Daron:

Originally posted by J4MESOX4D:

The recognised definition of phishing is:- ''Phishing is a form of social engineering where attackers deceive people into revealing sensitive information or installing malware such as ransomware''

So basically you admitted to installing tailored malware material which is an arm of phishing. You've just proved exactly what we've been saying for days. Your case is nothing new or revolutionary - this was absolutely rife back in 2014 and even with far more advanced security in place, you've fallen for what is a vintage scam.

By adding another "I am better than you. I need to tell you this or I wont fall asleep tonight" comment, this time into completely new thread that I didnt tag you in, you admitted that you are not getting laid James. And that is something thats around since like before 10.000BC. Much worse than my malware my dude.
Anyway, not replying to you. Get your self validation elsewhere.

Your childish remarks dont change the facts either.

Originally posted by wuddih:

note: there will be more of these "malware stealing session tokens" assumption threads popping up because that is how LTT got their youtube channels compromised. that exact method doesn't work with Steam though.

I am open to discussion if you can explain how is stealing youtube logged in browser different from logged in steam account in browser. I never said a word about steam app.

Same situation bro. Its happened to me 21.03.23
They stoled my items and sold on market to their accounts.
People here told me i used site like "keydrop" haha yes, but two years ago :D
Maybe are more people than us? What if someone found "hole" in steam to bypass?