Meyzmo Aug 26, 2019 @ 7:35am
3rd Party Achievement Sites
Are 3rd party sites like Completionist.me, Astats, Exochange, etc safe from phishing and data duplication? I have noticed that Astats site isn't secured.

Something went wrong while displaying this content. Refresh

Error Reference: Community_9708323_
Loading CSS chunk 7561 failed.
(error: https://community.fastly.steamstatic.com/public/css/applications/community/communityawardsapp.css?contenthash=789dd1fbdb6c6b5c773d)
< 1 2 >
Showing 1-15 of 16 comments
ReBoot Aug 26, 2019 @ 7:41am 
They're not "safe from phishing"as this question doesn't make sense. The quesion is whether you're safe from phishing. Any third-party site with a Steam login is a potential phishing site. Its bloody easy to sta safe from phishing though. Let your browser remember your Steam login credentials, if you see a site where your browser doesn't autofill, you know it's a phishing site.

To answer the question you asked, they're ran by people so the question is whether the people are safe from phishing.
Last edited by ReBoot; Aug 26, 2019 @ 7:42am
Brian9824 Aug 26, 2019 @ 7:43am 
Originally posted by Meyzmo:
Are 3rd party sites like Completionist.me, Astats, Exochange, etc safe from phishing and data duplication? I have noticed that Astats site isn't secured.

Any site that requires you to enter your steam login, password and authenticator into their site is not safe. The safe ones use steam's integrated login and don't require you to enter that info on their site.
Meyzmo Aug 26, 2019 @ 7:49am 
Thanks for your replies.

Yesterday I was on the Astats site, I entered my steam username and password by mistake in its login boxes and then clicked sign in and remember me. The site greeted me with a account not present message. The question from all this, will the site save my login data I entered by mistake or not ?

Last edited by Meyzmo; Aug 26, 2019 @ 7:49am
ReBoot Aug 26, 2019 @ 7:51am 
Originally posted by Meyzmo:
Thanks for your replies.

Yesterday I was on the Astats site, I entered my steam username and password by mistake in its login boxes and then clicked sign in and remember me. The site greeted me with a account not present message. The question from all this, will the site save my login data I entered by mistake or not ?
Sure it will. If its a phishing site, that is.
Meyzmo Aug 26, 2019 @ 7:53am 
Originally posted by ReBoot:
Originally posted by Meyzmo:
Thanks for your replies.

Yesterday I was on the Astats site, I entered my steam username and password by mistake in its login boxes and then clicked sign in and remember me. The site greeted me with a account not present message. The question from all this, will the site save my login data I entered by mistake or not ?
Sure it will. If its a phishing site, that is.
If its not a phishing site, if it's a normal site like the sites I mentioned above ?
ReBoot Aug 26, 2019 @ 7:55am 
Originally posted by Meyzmo:
Originally posted by ReBoot:
Sure it will. If its a phishing site, that is.
If its not a phishing site, if it's a normal site like the sites I mentioned above ?
Well, do you know for sure if it's not a phishing site? If yes, its a normal site by definition of "normal=not phishing". Otherwise, give me your definition of a normal site.
Brian9824 Aug 26, 2019 @ 7:59am 
Originally posted by Meyzmo:
Thanks for your replies.

Yesterday I was on the Astats site, I entered my steam username and password by mistake in its login boxes and then clicked sign in and remember me. The site greeted me with a account not present message. The question from all this, will the site save my login data I entered by mistake or not ?

You should change your login data anyways.

You have no idea what security that site has, no idea if they store that information, no idea if its legit, no idea if they have been compromised.

Your answer is no one can tell you.
Meyzmo Aug 26, 2019 @ 8:00am 
Originally posted by ReBoot:
Originally posted by Meyzmo:
If its not a phishing site, if it's a normal site like the sites I mentioned above ?
Well, do you know for sure if it's not a phishing site? If yes, its a normal site by definition of "normal=not phishing". Otherwise, give me your definition of a normal site.
First I have to mention that the Astats site I was on, was from a direct link on google search engine.
By normal i mean like: Google, gamersgate, humble bundle, Astats, completionist.me, facebook etc. will those sites save my login data in their data base or not. I only fear that the site saved my login data (which is the username and password of steam by enetered by mistake.)
Originally posted by Meyzmo:
Originally posted by ReBoot:
Well, do you know for sure if it's not a phishing site? If yes, its a normal site by definition of "normal=not phishing". Otherwise, give me your definition of a normal site.
First I have to mention that the Astats site I was on, was from a direct link on google search engine.
By normal i mean like: Google, gamersgate, humble bundle, Astats, completionist.me, facebook etc. will those sites save my login data in their data base or not. I only fear that the site saved my login data (which is the username and password of steam by enetered by mistake.)

Just cause you found it through Google search don't mean it's safe.
To be truly safe change your password on steam through a non infected device asap. Using steam not some other site.
Last edited by ↑↑↓↓←→←→BASelect; Aug 26, 2019 @ 8:06am
Brian9824 Aug 26, 2019 @ 8:05am 
Originally posted by Meyzmo:
Originally posted by ReBoot:
Well, do you know for sure if it's not a phishing site? If yes, its a normal site by definition of "normal=not phishing". Otherwise, give me your definition of a normal site.
First I have to mention that the Astats site I was on, was from a direct link on google search engine.
By normal i mean like: Google, gamersgate, humble bundle, Astats, completionist.me, facebook etc. will those sites save my login data in their data base or not. I only fear that the site saved my login data (which is the username and password of steam by enetered by mistake.)

The only way to be safe is to change your password, you can't change your login name, so start there. No one can tell you if that site is safe, or if they will get compromised a year from now and have saved logins stolen.

That's why you should be using 2fa so even if someone had your login name and password they still couldn't access your account.
Meyzmo Aug 26, 2019 @ 8:09am 
Okay guess I will change my password after all, thanks to everybody for their comments and replies, its really appreciated.
ReBoot Aug 26, 2019 @ 8:53am 
Originally posted by Meyzmo:
Originally posted by ReBoot:
Well, do you know for sure if it's not a phishing site? If yes, its a normal site by definition of "normal=not phishing". Otherwise, give me your definition of a normal site.
First I have to mention that the Astats site I was on, was from a direct link on google search engine.
By normal i mean like: Google, gamersgate, humble bundle, Astats, completionist.me, facebook etc. will those sites save my login data in their data base or not. I only fear that the site saved my login data (which is the username and password of steam by enetered by mistake.)
May be the case.
Meyzmo Aug 26, 2019 @ 10:10am 
Originally posted by ReBoot:
Originally posted by Meyzmo:
First I have to mention that the Astats site I was on, was from a direct link on google search engine.
By normal i mean like: Google, gamersgate, humble bundle, Astats, completionist.me, facebook etc. will those sites save my login data in their data base or not. I only fear that the site saved my login data (which is the username and password of steam by enetered by mistake.)
May be the case.
Illustrate more please.
ReBoot Aug 26, 2019 @ 10:20am 
Originally posted by Meyzmo:
Originally posted by ReBoot:
May be the case.
Illustrate more please.
Let's stick with
Originally posted by Meyzmo:
Okay guess I will change my password after all, thanks to everybody for their comments and replies, its really appreciated.
That should do it.
Kargor Aug 26, 2019 @ 10:26am 
Originally posted by Meyzmo:
Originally posted by ReBoot:
May be the case.
Illustrate more please.

The problem is that we can't know whether your Google search gave you the actual AStats website. It probably did, but that's just an assumption, not a known fact.

Of course, even if they are the real deal, your login attempt could be in a logfile, and their site might have been hacked. But even that kind of worst case situation isn't a big deal, since you're probably using Steam Guard, or that mobile thingy. So any attempt to log in with those credentials will just fail.
< 1 2 >
Showing 1-15 of 16 comments
Per page: 1530 50

Date Posted: Aug 26, 2019 @ 7:35am
Posts: 16