You'd probably want to deauthorize "all other computers" and also change your password as soon as possible.
It would certainly seem that someone other than you (perhaps a trading website) has access to your account and they're probably still logged in. Do hurry.
You might also want to do a FULL virus scan(and not the one that simply checks a few places and then stops). Perhaps use malwarebytes as that seems to be recommended most often here.
Good luck and I hope your friends understand your situation. You were probably going to give them all gift cards anyway, right? I don't know how you would go about retracting/refunding gift cards. If your friends already entered the code/accepted its too late anyway.

petran79 lähetti viestin:

Account was hacked and gift cards were sent to all my friends list

Out of nowhere I see that a gift card was exported, bypassing password and Steam guard. Does this mean they had access to personal and credit card info too?

All steps...

Scan for malware. https://www.malwarebytes.com/ or with whatever.

Deauthorize all devices https://store.steampowered.com/twofactor/manage

Change your password on a secure device.

Generate new back up codes. https://store.steampowered.com/twofactor/manage

Revoke the api key (this should be empty) https://steamcommunity.com/dev/apikey

And read...

https://help.steampowered.com/en/faqs/view/5E79-EA37-6D29-8CE9

DarkChrystmasMethod lähetti viestin:

You'd probably want to deauthorize "all other computers" and also change your password as soon as possible.
It would certainly seem that someone other than you (perhaps a trading website) has access to your account and they're probably still logged in. Do hurry.
You might also want to do a FULL virus scan(and not the one that simply checks a few places and then stops). Perhaps use malwarebytes as that seems to be recommended most often here.
Good luck and I hope your friends understand your situation. You were probably going to give them all gift cards anyway, right? I don't know how you would go about retracting/refunding gift cards. If your friends already entered the code/accepted its too late anyway.

I had checked for malware and it was clean.

I did not receive any charge mail about gift cards and the link had not even proper spelling. It had the name "steam communiti". So at least it was not official.

Fortunately my credit card requires authentication from the bank mobile app as well.

Though it was not stored in personal info. it would only appear whenever I wanted to buy a game in the selection menu, requiring the 3 digit code.

I changed password and deauthorised the devices.

cSg|mc-Hotsauce lähetti viestin:

petran79 lähetti viestin:

Account was hacked and gift cards were sent to all my friends list

Out of nowhere I see that a gift card was exported, bypassing password and Steam guard. Does this mean they had access to personal and credit card info too?

All steps...

Scan for malware. https://www.malwarebytes.com/ or with whatever.

Deauthorize all devices https://store.steampowered.com/twofactor/manage

Change your password on a secure device.

Generate new back up codes. https://store.steampowered.com/twofactor/manage

Revoke the api key (this should be empty) https://steamcommunity.com/dev/apikey

And read...

https://help.steampowered.com/en/faqs/view/5E79-EA37-6D29-8CE9

:summercat2023:

I did never have any api key. Should I subscribe?

Leave it empty..

Oh. The hijacker was sending fake phishing links pretending to be free gift cards.

Yeah. They didn't use your card information to make gift card purchases.