Install Steam
login
|
language
简体中文 (Simplified Chinese)
繁體中文 (Traditional Chinese)
日本語 (Japanese)
한국어 (Korean)
ไทย (Thai)
Български (Bulgarian)
Čeština (Czech)
Dansk (Danish)
Deutsch (German)
Español - España (Spanish - Spain)
Español - Latinoamérica (Spanish - Latin America)
Ελληνικά (Greek)
Français (French)
Italiano (Italian)
Bahasa Indonesia (Indonesian)
Magyar (Hungarian)
Nederlands (Dutch)
Norsk (Norwegian)
Polski (Polish)
Português (Portuguese - Portugal)
Português - Brasil (Portuguese - Brazil)
Română (Romanian)
Русский (Russian)
Suomi (Finnish)
Svenska (Swedish)
Türkçe (Turkish)
Tiếng Việt (Vietnamese)
Українська (Ukrainian)
Report a translation problem
Discussions Rules and Guidelines
Report this post
I have seen plenty of cases where things like this go wrong and its from one key feature that is easily avoided if you are willing to walk away entirely from the site and not log in to it even once if it fails the test and you should do this for every site that asks.
Steams protections don't matter if the site is lying to you and you give it your details directly. The thing to do is log into steam directly on its official website in your browser and then go to the site in question if it is a legit steam sytem log in it won't ask for your details and instead will just have a button to press to log in. Any site still asking for details/password/authenticator codes is a phishing page and should be avoided.
As always, use at your own risk.
HOWEVER, you need to be sure that you're actually using a "Login through Steam". The easiest way to do that is to log into the Steam website directly, without using any links provided by a third-party. THEN go to the third-party website and try to "login through Steam". If they ARE in fact using the Steam mechanism, it will just tell you that it will use your account "xxx" for website "yyy" and ask you to confirm -- no account name or password will be asked, and no Steamguard mail will be sent.
No.
When you enter an untrusted third-party site and provide them with your account information, it's taken.
Phishing by itself is done on a site that is NOT an official Steam page.
I guess they wouldn't request us to change our passwords if we 've forgotten them. They could have just printed them out in support mails then.
After reading this and checking your name history, I think that you are a future victim. Good luck !
Yeah that filter means nothing. There are websites that Steam does not want to compete with so if you mention them you are banned from forums. These are sites working for years and getting popular by the day. Still Steam is the Great Ape of PC gaming and they do not want to share that. Even if you have to way 20 minutes for a 300MB update when you have 100Mbps DL.
Unless it is a game developers website I would not trust it to use your login info. Games like Empyrion allow you to use your Steam info on their website but they are not going to steal or abuse your info as they have too much to loose. Some 3rd party website however I would not trust as they have nothing to loose if they are not directly connected to Steam. Where that game that is selling on Steam could be removed if the Devs were doing something shady.
You access many shady websites that have only one purpose: profit or scam. You advertise them in your name on Steam. It's like you are looking for it, and you will eventually get what you are looking for. It is possible that some of them already created an API key and are waiting for you to get something valuable and take it away from you at a given point.
There is nothing good that can be gain from those sites. Best you can do is change password, revoke API keys, deauthorize all devices and stay away from them.
Battle.net
gog.com
origin.com
uplay.com
But this is aside from the fact that Steam isn't even in competition with those shady sites that steal logins or demand you break away from Recommended Trading Practices so that you're vulnerable to losing everything. There are always a couple threads kicking around from someone who lost their account or items because they frequent these sites.
The big thing used to be they'd require you to make a "deposit" (Read: trade their bot all your stuff in exchange for nothing in return), and then when you went to withdraw the thing you wanted to trade for in the first place, suddenly they would pretend that they can't send the trade offer, and would turn around and blame everything on Steam. It would be pretty common to see people really upset over some made up error message that scammers claimed prevented anyone from trading with them. This way, they got to keep the items and would get the scammed person mad at someone else instead of just reporting the scam. I think this method stopped working because Valve was able to be far more proactive with it, since all the sites had to somehow identify their own scam bot account spo you could send an offer.
These days, the big thing is to get you to give them access to your account through some means. Then their bot sits on your account using the API and just waits until you try and send a trade offer. At that point, it cancels the offer, sets up a bot to have the same username and avatar as the person you wanted to trade with, and just sends itself an offer where you give your stuff away to it for free. It hopes you don't bother looking at the confirmation warning, and just authorize it in spite of all the big red flags.
I always wonder what would happen if you got 2 of these bots idling on your account at the same time though. Send an offer, and both bots start fighting over the offer as they both try and cancel each other and redirect it. Man that'd be funny.