Install Steam
login
|
language
简体中文 (Simplified Chinese)
繁體中文 (Traditional Chinese)
日本語 (Japanese)
한국어 (Korean)
ไทย (Thai)
Български (Bulgarian)
Čeština (Czech)
Dansk (Danish)
Deutsch (German)
Español - España (Spanish - Spain)
Español - Latinoamérica (Spanish - Latin America)
Ελληνικά (Greek)
Français (French)
Italiano (Italian)
Bahasa Indonesia (Indonesian)
Magyar (Hungarian)
Nederlands (Dutch)
Norsk (Norwegian)
Polski (Polish)
Português (Portuguese - Portugal)
Português - Brasil (Portuguese - Brazil)
Română (Romanian)
Русский (Russian)
Suomi (Finnish)
Svenska (Swedish)
Türkçe (Turkish)
Tiếng Việt (Vietnamese)
Українська (Ukrainian)
Report a translation problem
Discussions Rules and Guidelines
Report this post
https://steamcommunity.com/sharedfiles/filedetails/?id=1126288560
Also Steam Guard cannot be bypassed - somewhere along the lines you gave away your credentials to a phishing login.
the fact that they gone into my account with my steam guard activated and changed the phone number associated to my account ^^ , I was using my steam the day before this happened …. As I just bought a game a few days before…. If you aren’t sure but just want to deny my situation , please don’t comment.
And if you have read , I already opened a ticket and provided information … and I also tweeted to them , should give you a sense Of I am in distress , I do not need unnecessary comments from someone who doesn’t read , thank you for you time.
i am sorry your account got compromised, but it was more than likely that you were phished than steam was hacked.
edit: if you still ahve access to your acount
make sure to do all of these
1. Scan for malware https://www.malwarebytes.com/
2. Deauthorize all other devices https://store.steampowered.com/twofactor/manage
3. Change passwords from a trusted/clean computer.
4. Generate new backup codes for your Mobile App https://store.steampowered.com/twofactor/manage
5. Revoke the API key https://steamcommunity.com/dev/apikey (there should be nothing in the APIKEY)
it is omportant that you figure out where it is that your account was hit. as i said, mroe than likely phishing, but you may have a virus/keylogger
Regardless it's a lot easier to phish users than l33t h4x0r Steam or Steam Guard. But hey, if you're the first victim of a tidal wave of compromised accounts because you're right and Steam Guard can just be bypassed. I'm sure that'll be front page gaming news any minute now...
I’ve only been buying games from steam and one other site for years , there weren’t any problems and never log on to any public or other people’s pcs … so it’s even more stressful ..
I did add a new Norton 360 for gamers but that’s about it
And I found out that the new email linked to my account end with RU .. so some random Russian person … ummmm
Norton is among the ♥♥♥♥♥♥♥ AVs there are but that's not the main problem. The main problem is AVs kinda sucking in concept. They're a secondary line of defense with your own vigilance bring the first. Thinking of them as a vaccine genuinely protecting you is foolish indeed.
Thank you,
It’s just im not sure that’s the problem 😞
Im just saying what is new that I got …. Do you all have to be so stuck up about someone got their account stolen.. ?
only the ones that argue about it.
it sucks you lost your account. more than likely you were phished and either gave your info willingly to someone that you
thought was going to give you something for ♥♥♥♥♥♥♥♥♥♥♥ and the like) or for trading,
thought was a frined and wanted you to vote for them
thought you were logging into steam and were in fact logging into a scam site
you could have a virus of some kind. it is less likely but possible
it is NOT steam that got hacked. something i have said to others with this problem
do you think a person that is capable of hacking steam/valve is going to waste their time messing with your account?
they will not. they will scrape the db and run as quietly as they can until they sell the truly valuable info that they got
Somewhere you were phished by entering all your account information into a scam website. These are usually 3rd party trading sites.
What happens is that scammers create a fake Steam login page, and then lures people to the page.
When the user then enters their username/password, the scammer simply uses them to login themselves.
What every steam user needs to learn is to NEVER use their account to login anywhere other that the actual steam client (or web site).
Typical methods for luring you to a fake steam login:
* Setup a website, and offer users free stuff. User logs in and loses their account.
* A "friend" sends a message asking you to vote for their team in some tournament, usually CSGO, DOTA2 or other popular games, via a link. User logs in and loses their account.
* Someone leaves a comment on your profile, saying how you should join their CSGO team by following a link. User logs in and loses account.
if there is an api, remove it. it used in a tradinng scam when they scare you into transfering your items to another account to save them. then they move the transaction to another accunt and you lose everything.
edit:i may have misread. if you d o not have access to your account that is comproimised, you will not know about an api. follow the info in the guide first, get your account back, then follow those steps
As opposed to wanting to argue with people about the most plausible root cause?
For you this is a big deal, and confusing and irritating and then also being told you're probably the root cause probably isn't what you want to hear. But try to keep in mind this conversation happens every day, thousands of times. And as a result sometimes the user's feelings kinda get steamrolled because the important part is, "Follow this guide. Learn these lessons. Sorry but a lot of your assumptions are wrong. Your ego is gonna have to take a couple of lumps."
I wouldn't take it personal. Follow the guide. Keep an open mind. Be careful trying to float face saving arguments because we've seen every version of them. No one thinks less of you. The stream of users who get their accounts hijacked is endless. We'll be having this same conversation tomorrow. And the next day.
All having your account hijacked means is you're just a regular person who doesn't have much interest in scams or social engineering. And that applies to like 98% of people. No shame there. But being aware you're vulnerable and just a person is a good first step to being able to protect yourself moving forward and to making fewer assumptions when something like this happens.
It can be kinda nice to skip the fluff and get right to the point, and get the problem resolved ASAP. Ultimately that's what most of us want. That's what the first post was going for.