No, you weren't.

You weren't robbed, nor is Valve at fault. You willingly distributed your login information, left the door wide open and even held it open for anyone who wanted in. Perhaps you've since realized that this wasn't the wisest course of action, but shifting the blame now does nothing to rectify the situation.

And in case you weren't aware: no, you won't be getting your things back. You gave them away, and without your actions, this entire situation wouldn't have occurred.

Therefore, it's imperative that you contemplate the following:

- How do you secure your account?
- And how do you prevent yourself from carelessly clicking links or registering on third party sites without thinking it through?

You exposed your login credentials:
a) Either by logging into a site that faked a Steam login and made a bot log into your account using the save password as well as the trust device feature while injecting a Steam API access into it.
b) Or by installing malware that stole your session data or injected a keylogger.
c) Or by using outdated login information that got exposed in a leak.
d) Or by falling for a Steam Support impersonation scam on Discord or similar platforms.

1. Scan for malware https://www.malwarebytes.com/
2. Check that the email and phone number on the Steam account are still yours.
3. Ensure your email address and/or password aren't contained in any public breaches:
- Email: https://haveibeenpwned.com/
- Password: https://haveibeenpwned.com/Passwords
-- If they are contained in any public breaches ("oh no, pwned!"), change your email account's password from a secure computer before proceeding.
-- If that happens, you may want to secure other accounts than just Steam.
-- Consider using mobile two-factor authentication on your e-mail address if your e-mail provider supports it.
4. Deauthorize all other devices https://store.steampowered.com/twofactor/manage
5. Change passwords from a clean computer
6. Generate new backup codes for your Mobile App https://store.steampowered.com/twofactor/manage
7. Revoke the API key https://steamcommunity.com/dev/apikey (there should be nothing in the APIKEY)
8. Change your trade link: Profile > your inventory > trade offer > Who can send me trade offer > scroll down and make a new trade link.
9. If points were stolen within 14 days, reset your Steam password (not change, RESET using Forgot Password) to cancel pending awards.
10. Once you have done all of the above steps, edit your profile to get rid of the fake message planted by the scammer (if it exists).

Be aware that Steam Support will not restore stolen items nor stolen wallet funds.
In accordance with Section 1 C of the Steam Subscriber Agreement, you are responsible for all actions on your account, no matter who used the account.

Valve employees will never communicate with you about your account using any chat system including Steam Chat and Discord. There's no situation in which you'd need to reach out to a Valve or Steam employee directly to resolve an issue.

The ONLY way you can contact Steam support and through which you will receive official answers is through https://help.steampowered.com and no other way.

Originally posted by 𝙸𝚁𝚄𝙻▲𝙽:

No, you weren't.

You weren't robbed, nor is Valve at fault. You willingly distributed your login information, left the door wide open and even held it open for anyone who wanted in. Perhaps you've since realized that this wasn't the wisest course of action, but shifting the blame now does nothing to rectify the situation.

And in case you weren't aware: no, you won't be getting your things back. You gave them away, and without your actions, this entire situation wouldn't have occurred.

Therefore, it's imperative that you contemplate the following:

- How do you secure your account?
- And how do you prevent yourself from carelessly clicking links or registering on third party sites without thinking it through?

What are you talking about?! I NEVER click on weird links! I've been involved with computers for 35 years, since the Commodore 64. Original Windows 11, security, antivirus, etc.

My account is secured with Steam Guard, you work for Steam, that you defend them and point out my guilt?! I secured my Steam account, as Steam requires, i.e. with the Steam Guard option!

I don't even use the Steam Market. I don't go to sites with cracks for games or adult content, my PC has NEVER had a virus, etc.

I will NOT let go of that $200 As a Steam user I use their "safe" Steam Guard login. I gave the thief's nickname and reported it immediately.

These are some of the ways you could have given your login information away.

Have you been asked to vote for a team/tournament/pixel art?
Have you been asked to register for a tournament?
Have you used any third-party site for gambling or trading? (doesn't have to have been recent, they can keep your info for years, waiting till you build up your inventory)
Have you logged in on a public device?
Have you entered any giveaways/giveaway groups?
Have you tried to claim any "free 50$ gift cards"?
Have you talked to an "admin" after being "accidentally reported"?
Does someone else use your PC or your account?


Secure your account by doing the following steps

1. Scan for malware https://www.malwarebytes.com/
2. Check that the email and phone number on the Steam account are still yours.
3. Deauthorize all other devices https://store.steampowered.com/twofactor/manage
4. Change passwords from a trusted/clean device.
5. Generate new backup codes for your Mobile App https://store.steampowered.com/twofactor/manage
6. Revoke the API key https://steamcommunity.com/dev/apikey (there should be nothing in the APIKEY)

Originally posted by WYkrzykNICK:

Originally posted by 𝙸𝚁𝚄𝙻▲𝙽:

No, you weren't.

You weren't robbed, nor is Valve at fault. You willingly distributed your login information, left the door wide open and even held it open for anyone who wanted in. Perhaps you've since realized that this wasn't the wisest course of action, but shifting the blame now does nothing to rectify the situation.

And in case you weren't aware: no, you won't be getting your things back. You gave them away, and without your actions, this entire situation wouldn't have occurred.

Therefore, it's imperative that you contemplate the following:

- How do you secure your account?
- And how do you prevent yourself from carelessly clicking links or registering on third party sites without thinking it through?

I've been involved with computers for 35 years

And yet you gave away your login-credentials within mere minutes ...

Note that the context of immediate replies such as you got in #1 and #2 is this very same thing happening tens of times a day each day and those that frequent the forums therefore being well-acquainted with things.

A note is that at the time of writing #2 is still caught in Steam's automated context check thingy whereas it in fact is the most important for you now; if you also still can't see it yet, reply/quote it to have it at least visible for yourself.

Your account was/is compromised. This in a very vast majority of cases happens as a matter of a phishing scam. One of the more (I believe...) helpful recent threads as to it was at

https://steamcommunity.com/discussions/forum/1/4511002848507458201/?tscn=1722777141#c4511002848510370759

Although there in a inventory rather than wallet context, that thread also goes into Steam Guard generally being less useful than may be assumed initially.

But first do as per #2 (or #1 in that other thread, or #5 above)

Originally posted by miamew3:

These are some of the ways you could have given your login information away.

Have you been asked to vote for a team/tournament/pixel art?
Have you been asked to register for a tournament?
Have you used any third-party site for gambling or trading? (doesn't have to have been recent, they can keep your info for years, waiting till you build up your inventory)
Have you logged in on a public device?
Have you entered any giveaways/giveaway groups?
Have you tried to claim any "free 50$ gift cards"?
Have you talked to an "admin" after being "accidentally reported"?
Does someone else use your PC or your account?

-------NO! NEVER!---- it's ONLY my PC, password protected access.



Secure your account by doing the following steps

1. Scan for malware https://www.malwarebytes.com/
2. Check that the email and phone number on the Steam account are still yours.
3. Deauthorize all other devices https://store.steampowered.com/twofactor/manage
4. Change passwords from a trusted/clean device.
5. Generate new backup codes for your Mobile App https://store.steampowered.com/twofactor/manage
6. Revoke the API key https://steamcommunity.com/dev/apikey (there should be nothing in the APIKEY)

I did ALL of these steps IMMEDIATELY, and I have been using Malwarebyte for years.

Originally posted by 𝙸𝚁𝚄𝙻▲𝙽:

Originally posted by WYkrzykNICK:

I've been involved with computers for 35 years

And yet you gave away your login-credentials within mere minutes ...

Originally posted by 𝙸𝚁𝚄𝙻▲𝙽:

Originally posted by WYkrzykNICK:

I've been involved with computers for 35 years

And yet you gave away your login-credentials within mere minutes ...

Grow up, I didn't give my data to ANYONE and I didn't write it down ANYWHERE. I remember it.

Originally posted by WYkrzykNICK:

Originally posted by miamew3:

These are some of the ways you could have given your login information away.

Have you been asked to vote for a team/tournament/pixel art?
Have you been asked to register for a tournament?
Have you used any third-party site for gambling or trading? (doesn't have to have been recent, they can keep your info for years, waiting till you build up your inventory)
Have you logged in on a public device?
Have you entered any giveaways/giveaway groups?
Have you tried to claim any "free 50$ gift cards"?
Have you talked to an "admin" after being "accidentally reported"?
Does someone else use your PC or your account?

-------NO! NEVER!---- it's ONLY my PC, password protected access.



Secure your account by doing the following steps

1. Scan for malware https://www.malwarebytes.com/
2. Check that the email and phone number on the Steam account are still yours.
3. Deauthorize all other devices https://store.steampowered.com/twofactor/manage
4. Change passwords from a trusted/clean device.
5. Generate new backup codes for your Mobile App https://store.steampowered.com/twofactor/manage
6. Revoke the API key https://steamcommunity.com/dev/apikey (there should be nothing in the APIKEY)

I did ALL of these steps IMMEDIATELY, and I have been using Malwarebyte for years.

Malwarebytes is a deep spot clean, not a functioning prevention antivirus. Regardless they got your login details somewhere, and it wasn't on Steam's part.

I also use NOD32 and Windows Defender

Originally posted by WYkrzykNICK:

I also use NOD32 and Windows Defender

And I just use basic windows defender, and my account's never been compromised. It's somewhere on your end, your login cookies got hijacked or you fell for a phishing scam.

Malware isn't too likely in any case; it's vastly more likely that you at some point during the last few months were successfully phished.

Originally posted by WYkrzykNICK:

Originally posted by 𝙸𝚁𝚄𝙻▲𝙽:

And yet you gave away your login-credentials within mere minutes ...

Originally posted by 𝙸𝚁𝚄𝙻▲𝙽:

And yet you gave away your login-credentials within mere minutes ...

Grow up, I didn't give my data to ANYONE and I didn't write it down ANYWHERE. I remember it.

Grow up and accept that this was due to your lack of account security, may it be virus, creds entered in shady site, etc.

Originally posted by Yujah:

Malware isn't too likely in any case; it's vastly more likely that you at some point during the last few months were successfully phished.

"But I don't click fishy links" people fail to realize that's the entire premise behind phishing, to make the link and website look as legit as possible. OP somewhere along the line fell for a fake trade site, one of those "gift card" urls that link to a fake steam website, or one of those "vote for my team/skin" scams.