引用自 STARDREAM Vids：

i just got this dm is this the the same scam im a little worried because it show i sent it when my pc was off

Secure your account.

Do a virus scan.

Check that the email and phone number on the steam account are still yours.

Deauthorize all devices https://store.steampowered.com/twofactor/manage

Change your password on a secure device.

Generate new back up codes. https://store.steampowered.com/twofactor/manage

Revoke the api key https://steamcommunity.com/dev/apikey

You "like to figure out how things work" and didn't immediately have your friend show you the link as it is on his computer? I would have assumed my friend was unaware of what he was talking about before I would assume a scam involving hacked accounts that send out links *didn't* lead to a malicious URL.
Speaking of, not only can you now do hyperlinks in discord, but you can also ping a user without a visible ping button and add fake "Only you can see this message" style text to the bottom.
If steam lets me, you can see this effect in the following image: https://i.imgur.com/vLrLqZK.png
If that doesn't work, I'll upload it to my profile and edit this message.

It's a sad state of affairs, really. Discord is just adding things without thinking of the ramifications of how the average user interfaces with changes they don't know about and don't understand.

引用自 Vagrant：

You "like to figure out how things work" and didn't immediately have your friend show you the link as it is on his computer? I would have assumed my friend was unaware of what he was talking about before I would assume a scam involving hacked accounts that send out links *didn't* lead to a malicious URL.
Speaking of, not only can you now do hyperlinks in discord, but you can also ping a user without a visible ping button and add fake "Only you can see this message" style text to the bottom.
If steam lets me, you can see this effect in the following image: https://i.imgur.com/vLrLqZK.png
If that doesn't work, I'll upload it to my profile and edit this message.

It's a sad state of affairs, really. Discord is just adding things without thinking of the ramifications of how the average user interfaces with changes they don't know about and don't understand.

He sent me a screenshot. The screenshot was a real steamcommunity URL with no typos. I didn't suspect the link for a bit because I didn't know until then that it was possible to create hyperlinks in Discord. My friend was aware that it was a scam, and in all fairness, we didn't like the person who got hacked, so we laughed at it. What made me a bit suspicious was well, the fact that it was a steamcommunity link sent in a way that was obviously a scam. I just couldn't figure out why, and when I tried typing the link myself, it didn't lead to anywhere. That's when I asked my friend "Can you click on the message and click on 'Copy Message'?", that's when we realized it was a hyperlink.

Edit: I knew about the recent updates that allows you to do those things, and all the kids playing with it and making big, long spammy messages.

And also, as far as I looked into it, hyperlinks isn't something you can do on native discord. Only modded, like yours.

引用自 Iron Knights：

There is such a thing as Passive transfer of ID & PWD to phishing sites via Scripting.
But you do you OP.

I just saw this message and holy, do you know how much a xss vulnerability is worth? Pretty sure Valve would pay more to fix this than what the hacker could make with it.

edit: "hacker", more like script kiddie, realistically but my point still stands.

引用自 lycanroc in a dog costume：

And also, as far as I looked into it, hyperlinks isn't something you can do on native discord. Only modded, like yours.

No you can do it on native, or web version of discord, has nothing to do with modded discord.

If you forget to put the http then that be why not working for you on discord.
https://www.youtube.com/watch?v=VTSLeW6aiTI

引用自 Freder!ckz：

This is very common on Discord, don't click on links that look strange. Also, almost never a stranger is going to share something free to you.

Bad advice, because those scams often comes by people who are friends with you. So except if you accept everyone who sends you a friendlist, that ain't a super good advice. Just be suspect over any link that's being sent to you out of the blue (or not even out of the blue). Double-check everything and everyone.

引用自 Dr.Shadowds 🐉：

引用自 lycanroc in a dog costume：

And also, as far as I looked into it, hyperlinks isn't something you can do on native discord. Only modded, like yours.

No you can do it on native, or web version of discord, has nothing to do with modded discord.

If you forget to put the http then that be why not working for you on discord.
https://www.youtube.com/watch?v=VTSLeW6aiTI

Wild. When I looked it up I only saw stuff being able to be done with Vencord. Not through just classic markings. Thanks for the info.

in the discord you can send one link using another phrase just sending the message like this:
[steamcommunity link](the scam site link goes here)

引用自 lycanroc in a dog costume：

引用自 Freder!ckz：

This is very common on Discord, don't click on links that look strange. Also, almost never a stranger is going to share something free to you.

Bad advice, because those scams often comes by people who are friends with you. So except if you accept everyone who sends you a friendlist, that ain't a super good advice. Just be suspect over any link that's being sent to you out of the blue (or not even out of the blue). Double-check everything and everyone.

引用自 Dr.Shadowds 🐉：

No you can do it on native, or web version of discord, has nothing to do with modded discord.

If you forget to put the http then that be why not working for you on discord.
https://www.youtube.com/watch?v=VTSLeW6aiTI

Wild. When I looked it up I only saw stuff being able to be done with Vencord. Not through just classic markings. Thanks for the info.

if you just overlay your mouse over the link without click, you can see the original link :)

dont click, phishing url...
https://prnt.sc/GPSWV3S8sPI3

引用自 root@Bash:~#：

Hi all,

A friend got a message from another friend about "Gift 50$" with next to it, the *real* steamcommunity.com link, then a bunch of numbers. I know - we know - and I hope everyone knows it's a scam. But this one has me perplexed. What's the point of this one if it leads to the real steam, and since it's a "bad" url, redirects to the frontpage of Steam?

Here's an idea:

1. The scammer sends you the link to real steamcommunity
   
2. The link "bounces" because it doesn't go anywhere
   
3. You tell the scammer "thanks for the link, but it doesn't work?"
   
4. Scammer tells you "oh... sorry, I mistyped it. Here's the real one"
   
5. PROFIT!

The idea being: with the first link obviously not a bad one, you might not be paying attention to the second one.

引用自 Zurisu Nightcore：

-snip-

If I had a dollar everytime people chooses not to read, I think I might be able to afford RTX 4080, or maybe even RTX 4090.

Here the thing what you posted is a useless link, it doesn't actually take you to anywhere, and Steam will just redirect you to main community page because it think that where trying to go to, or that page no longer exist which it never did.

I want you to just watch this video, just watch it for ONE minute that all it takes, and maybe you figure it, discord has a problem that allow people to post links that look legit, but redirectly you to their scam sites that not steam url at all.

https://www.youtube.com/watch?v=VTSLeW6aiTI

Example I post https://steamcommunity.com/ on discord, but if I edit with command to change hyperlink to https://www.google.com/ guess what when click on it, and you thinking you're going to steam community page, you're actually taken to google instead....

Again this is a discord problem that allow anyone to change hyper link in their post.

引用自 root@Bash:~#：

Hi all,

A friend got a message from another friend about "Gift 50$" with next to it, the *real* steamcommunity.com link, then a bunch of numbers. I know - we know - and I hope everyone knows it's a scam. But this one has me perplexed. What's the point of this one if it leads to the real steam, and since it's a "bad" url, redirects to the frontpage of Steam?

I've been trying to find anything, hoping to see a "smart" IDN homograph attack or something, but nothing. Trying to google it up got me no answer aswell.

Thanks for your time :)

edit: just for clarification, when I talk about the link, it's literally just "steamcommunity.com/" and then a bunch of numbers. no "/gift/" or "/profile/" or anything like that. Why bother hacking into a Discord account just to post a real steamcommunity link?

Is a scam, dont click

引用自 Dr.Shadowds 🐉：

引用自 Zurisu Nightcore：

-snip-

If I had a dollar everytime people chooses not to read, I think I might be able to afford RTX 4080, or maybe even RTX 4090.

Here the thing what you posted is a useless link, it doesn't actually take you to anywhere, and Steam will just redirect you to main community page because it think that where trying to go to, or that page no longer exist which it never did.

I want you to just watch this video, just watch it for ONE minute that all it takes, and maybe you figure it, discord has a problem that allow people to post links that look legit, but redirectly you to their scam sites that not steam url at all.

https://www.youtube.com/watch?v=VTSLeW6aiTI

Example I post https://steamcommunity.com/ on discord, but if I edit with command to change hyperlink to https://www.google.com/ guess what when click on it, and you thinking you're going to steam community page, you're actually taken to google instead....

Again this is a discord problem that allow anyone to change hyper link in their post.

Already been answered weeks ago. ♥️

i tried to click on it knoting hapened

引用自 Plauge.dr：

i tried to click on it knoting hapened

Read the discussion, and you figure it out.