Install Steam
login
|
language
简体中文 (Simplified Chinese)
繁體中文 (Traditional Chinese)
日本語 (Japanese)
한국어 (Korean)
ไทย (Thai)
Български (Bulgarian)
Čeština (Czech)
Dansk (Danish)
Deutsch (German)
Español - España (Spanish - Spain)
Español - Latinoamérica (Spanish - Latin America)
Ελληνικά (Greek)
Français (French)
Italiano (Italian)
Bahasa Indonesia (Indonesian)
Magyar (Hungarian)
Nederlands (Dutch)
Norsk (Norwegian)
Polski (Polish)
Português (Portuguese - Portugal)
Português - Brasil (Portuguese - Brazil)
Română (Romanian)
Русский (Russian)
Suomi (Finnish)
Svenska (Swedish)
Türkçe (Turkish)
Tiếng Việt (Vietnamese)
Українська (Ukrainian)
Report a translation problem
Discussions Rules and Guidelines
Report this post
DO NOT TRADE
If you have access to the account
Steps to take NOW:
1. Scan for malware https://www.malwarebytes.com/
2. Deauthorize all other devices https://store.steampowered.com/twofactor/manage
3. Change passwords from a clean computer
4. Generate new backup codes for your Mobile App https://store.steampowered.com/twofactor/manage
5. Revoke the API key https://steamcommunity.com/dev/apikey (there should be nothing in the APIKEY)
Please review how you are logging into Steam, you somehow gave them your log in information. This could of been due to the computer being compromised and redirecting to a fake login, or you using a 3rd party site to login to steam.
its not a hack, you simply gave someone your log in information.
Do all of the steps. ASAP!
Do not trade
Scan for malware https://www.malwarebytes.com/
Deauthorize all other devices https://store.steampowered.com/twofactor/manage
Change passwords from a clean computer
Generate new backup codes https://store.steampowered.com/twofactor/manage
Revoke the API key https://steamcommunity.com/dev/apikey
Stop using shady third party trade sites or clicking suspicious links.
Thank you so much! I am freaking out a little bit but following all the steps you provided.
Here is the thing I have two step verification on and they still managed to get in! As for me clicking suspicious links... well it came from a friend so I just trusted them even tho the message was from the hacker :( Im reading the messages they sent and they were all the same "plz vote for me its really urgent and important for me" etc etc
It has legitimate uses but that "vote for my team" scam and other scams utilize it to get soft control of your account and do things that spook people ignorant of scams by doing things such as changing your name to "VAC Banned" or editing your profile information to try and get you to trade your items away so they can cancel the trade and resend it to a copy cat account of the friend you tried to send them to.
What does "soft control" mean? All this scammer seemed to have done is send their link using my account to other people, and deleted my real name from my account. Cant they just request another Steam API while im sleeping and do more damage tomorrow?
They have very limited things they can actually do with, mostly being profile editing/friends list shenanigans.
So you are saying they cant actually do dangerous stuff like buy games with my account, delete my account etc?
With an API scam no. Here's a thread that talks about it a little bit more
https://steamcommunity.com/groups/lootfarm/discussions/0/1608274347722600472/
I wouldn't advice using bots either even though the people that made this thread run a trade bot.
It's quite useless and harmless for normal user's.
It's when you get to the authentication bit of your account after signing in, by then it's to late after the code goes in. It's taken and used almost instantly.
That's when your realisation kicks in.
They block anyone who fails to fall for the story and move on to the next friend or desired inventory in the list.
That's why you fell for it, they already had control of that friends account also.
They control the site. API likes site.
That's about as basic as i can explain anyways.
https://steamcommunity.com/dev/apiterms
1. Steam Web APIs. The Steam Web APIs are Valve's service allowing licensees to retrieve certain data regarding Steam and games available via Steam ("Steam Data"). The Steam Web APIs consist of multiple application program interfaces for retrieving various Steam Data, and presenting the Steam Data to end users via a web site, software application, or service owned and operated by you and identified in the your API key sign up form (the "Application"). These items are further defined in the Steam Web API documentation. Valve makes the Steam Web API available free, and you understand that Valve may change or terminate the Steam Web API entirely or your access in particular. Valve may identify new releases from time to time at this link, and may require you to use the most recent version. New versions may be incremental and consistent with older versions, but in some cases they may not be compatible with your previous implementation.