Install Steam
login
|
language
简体中文 (Simplified Chinese)
繁體中文 (Traditional Chinese)
日本語 (Japanese)
한국어 (Korean)
ไทย (Thai)
Български (Bulgarian)
Čeština (Czech)
Dansk (Danish)
Deutsch (German)
Español - España (Spanish - Spain)
Español - Latinoamérica (Spanish - Latin America)
Ελληνικά (Greek)
Français (French)
Italiano (Italian)
Bahasa Indonesia (Indonesian)
Magyar (Hungarian)
Nederlands (Dutch)
Norsk (Norwegian)
Polski (Polish)
Português (Portuguese - Portugal)
Português - Brasil (Portuguese - Brazil)
Română (Romanian)
Русский (Russian)
Suomi (Finnish)
Svenska (Swedish)
Türkçe (Turkish)
Tiếng Việt (Vietnamese)
Українська (Ukrainian)
Report a translation problem
Discussions Rules and Guidelines
Report this post
Report it to the content provider.
Abuse text: Abuse Report: Phishing and Malicious Use of Domain steamcommunuty [dot] ru
Dear Timeweb Team,
I am writing to report the domain steamcommunuty [dot] ru as a phishing and malicious domain designed to impersonate the legitimate Steam Community website (steamcommunity [dot] com). The domain in question poses a significant security threat to users by deceiving them into believing it is an official Steam platform.
Abuse Description: The domain has been identified as actively hosting phishing pages that are designed to collect sensitive user credentials, such as Steam account logins, passwords, and payment details. This activity constitutes a violation of acceptable use policies and poses a severe threat to cybersecurity.
Similarity to Official Domain: The malicious domain is almost identical to the legitimate Steam Community domain (steamcommunity [dot] com), differing by only a minor spelling change ("community" vs. "communuty"), a classic example of typosquatting intended to deceive users.
Evidence:
- The domain's hosted content imitates the official Steam website in appearance, functionality, and branding without authorization.
- It has been reported as engaging in phishing attempts by several cybersecurity monitoring tools and end-users.
- The domain targets unsuspecting victims, resulting in account compromise and potential financial loss.
- The malicious domain hotlinks assets (e.g., logos, stylesheets, and scripts) directly from the legitimate steamcommunity.com website. This activity not only infringes upon intellectual property rights but also contributes to the deception by making the phishing site appear identical to the legitimate one.
Phishing Content:
- The domain mimics the official Steam interface to collect login credentials and financial data under false pretenses. Victims are led to believe they are logging into their genuine Steam accounts, leading to account takeovers and potential financial losses.
Violations:
- Phishing and Deception: Designed to steal sensitive data, including account credentials.
- Intellectual Property Infringement: Unauthorized use of Steam's branding, logos, and assets.
- Regional Targeting: Focused phishing attempts on Ukrainian users further escalate the severity.
Request for Immediate Action:
I kindly request that you take immediate action to investigate and suspend the domain steamcommunuty.ru to prevent further harm to users. Additionally, please escalate this issue to relevant authorities, such as local cybersecurity agencies, to ensure the responsible parties are held accountable.
The domain steamcommunuty [dot] ru is being used for phishing and malicious activities, specifically targeting users by impersonating the legitimate Steam Community website (steamcommunity [dot] com).
Details of Abuse:
- Phishing Pages: The domain hosts fraudulent content designed to collect sensitive user data, including login credentials and payment information, under false pretenses.
- Typosquatting: The domain name is intentionally misspelled to mislead users into believing they are accessing the legitimate Steam platform.
- Hotlinking Assets: The site illegally hotlinks logos, stylesheets, and other assets from steamcommunity [dot] com, infringing on intellectual property rights and reinforcing the deception.
- Referrer Exploitation: Users are redirected to this domain via deceptive links embedded in official-looking resources, further misleading them.
- Regional Targeting: The site primarily targets Ukrainian IP addresses, which suggests deliberate exploitation of regional trust factors.
Violations:
- Unauthorized use of branding and intellectual property belonging to steamcommunity [dot] com.
- Active phishing designed to defraud users and compromise their accounts.
- Abuse of redirection mechanisms to appear associated with the legitimate platform.
This domain is being used exclusively for illegal purposes and poses a serious threat to user security. Immediate suspension of steamcommunuty [dot] ru and associated services is required to mitigate ongoing harm.
Back when Valve had Global volunteer mods, we submitted thousands of these fake Steam links to get blacklisted.
but these are steam user forums
the people that you would report this to are not going to be here
Although support still don't react, one hour already went from my ticket send, it is a bit disappointed that users are worried about security more than the billion sized Valve corporation.
there is just so much that they can do
we are given the tools to keep us safe
as long as we practice the basics of internet safety, we are good
unfortunately, some don't
either because of fear at the moment, thinking they are getting banned
or they got greedy
or because they did not pay attention
when it comes to other sites
again, only so much they can do
as far as we know, they have reported all the sites they know about
where they are located is a big deal
For sure. I think you are right in your thoughts.
Nevertheless i will take actions myself to take down that phishing. And this is proof that even one can do something.
And also I still waiting response from support.
Already 2 hours and they not react, but still - they must and they will