hacked or phished? either way sorry it happened

make sure to do all of these

1. Scan for malware https://www.malwarebytes.com/
2. Deauthorize all other devices https://store.steampowered.com/twofactor/manage
3. Change passwords from a trusted/clean computer.
4. Generate new backup codes for your Mobile App https://store.steampowered.com/twofactor/manage
5. Revoke the API key https://steamcommunity.com/dev/apikey (there should be nothing in the APIKEY)

Originally posted by kalcuey-freehk:

hacked or phished?

Always phished.

now that you mention it. Phished does seem more likely. Avoided the 2factor til now because of too much hassle. Got it set up today for both steam and e-mail. Thx for the tip.

Originally posted by Darkside:

now that you mention it. Phished does seem more likely. Avoided the 2factor til now because of too much hassle. Got it set up today for both steam and e-mail. Thx for the tip.

that is awesome, but be careful. that can be phished as well.

Originally posted by Darkside:

now that you mention it. Phished does seem more likely. Avoided the 2factor til now because of too much hassle. Got it set up today for both steam and e-mail. Thx for the tip.

You can still get phished with 2 factor, always be careful

Phishing attacks are most common thing on the internet, you be shocked how it happens daily across all services, lost emails, lost accounts, so on, all because either they're not aware of such things, never got educated about it to not fall for it again repeatedly, some people ignore things, or just plain not pay attention at all just clicking things, and so on, so it's not a shocker things like that happens.

Here tips, and examples to help you give an ideal of types of scams, and phishing attacks.

Originally posted by Dr.Shadowds 🐉:

Here are the most common reason people get accounts hijack for any service really are as followed.
- Sharing account infomation with others. <--- Very common with impersonators, pretending to be Steam admin / support.
- Logging in on phishing sites. <--- Very common with skin gambling sites.
- Downloading / Installing Virus / Keylogger on your system.
- Using public devices that has keyloggers, such as cyber cafe, school computers, and etc...
- Storing your login credentials on a unsecured service that others has access to view.
- Using same login credentials for all your things, or using same login credentials on another service that had a data leak. Yes it does matter because even if it not related to Steam, if using same login credentials, hijackers will try to use those credentials to see what services you use with those credentials. https://haveibeenpwned.com/

YouTube™ Video: What is Phishing? 

Views: 487,208

Phishing scams are a growing threat on the Internet. By being aware of the scam, — you can feel confident in working with companies online. http://www.getcybersafe.gc.ca/index-eng.aspx

The type of story scammers say to you.

- "Hey vote for my team", and they link you a phishing site link, and try get you to login.

- "Hey I can't add you, please add me", and they try to start their scam with you.

- If you're friend with someone that got their account hijacked, you get scam message like, "I report you", "you been banned", and whatever to try scare you, and they tell you to trade your items to them, or if you have a login to phishing site may have a API key on account that redirect trades, they ask you to give them money, or etc...

- If you already got your account compromise by them, they change your display name to banned, or whatever, your display picture as well, they may delete your friends, and try to spend your wallet funds if you have any, also trade all your items, but if they see if you have mobile authenticator attached, they play their scam to get you to confirm the trade to get your items off your account to their account quicker if they're able to trick you into confirming the trade.


I show you few examples.

One example of phishing site 

Community Created Artwork for Steam Artwork

By: Dr.Shadowds 🐉

Never login from 3rd party sites, and if any site has an in webpage tab browser DO NOT PUT ANY INFO INTO IT! If you want to ask how this works, this is their web interface javascript, basically whatever info you put, it...

Scammer via Discord 

Community Created Artwork for Steam Artwork

By: Dr.Shadowds 🐉

Here a youtube video someone made that goes more indepth giving you a view example to help you learn more about these phishing attacks.

YouTube™ Video: Steam scam to be aware of (fake steam staff message) 

Views: 18,042

maybe new videos coming soon also.. or livestreams

YouTube™ Video: API-SCAM! What is it? How to PREVENT it and KEEP your CS:GO SKINS SAVE? 

Views: 37,933

So recently the API-Scam is getting more common and people still do not know about this. It is very easy to lose a lot of CS:GO Skins through it just because nobody knows it and phising and hacking...

YouTube™ Video: The "I accidentally reported you" to a Steam Admin SCAM 

Views: 61,885

Don't fall for this fake "Steam Admin" scam! Leave a like if you enjoyed the video! 👍 ✦ CHECK OUT MY WEBSITE ✦ Get balance & discounts on multiple sites Link: https://jordanr.net ✦...

YouTube™ Video: NEW STEAM VOTING SCAM! (I WAS SOLD ON THE DARKWEB!?!?!?!?) 

Views: 2,325

subscribe or ill manifest cancer in your firstborn Twitch: https://www.twitch.tv/nixnrl Twitter: https://twitter.com/home report his steam account: https://steamcommunity.com/id/XPEOF/

https://steamcommunity.com/discussions/forum/1/4956744526904317093/#c4956744526904653890

People who fall for this stuff don't tell us how they could have been informed, to prevent them from getting scammed or phished or otherwise tricked into giving away their account.

We inform people of these things only after they encounter such issue.

@OP, do you have any tips on how it helps expose you to these things (and inform you properly on how to recognize it and how to avoid getting hacked), before it happens? (not after)

Also do you know why people don't seem to be aware? It would help for future cases. Hopefully you won't get targetted a second time (through a new method maybe, or not)

Originally posted by Elucidator:

People who fall for this stuff don't tell us how they could have been informed, to prevent them from getting scammed or phished or otherwise tricked into giving away their account.

We inform people of these things only after they encounter such issue.

@OP, do you have any tips on how it helps expose you to these things (and inform you properly on how to recognize it and how to avoid getting hacked), before it happens? (not after)

Also do you know why people don't seem to be aware? It would help for future cases. Hopefully you won't get targetted a second time (through a new method maybe, or not)

Read through the quoted stuff in Dr.Shadowds post above yours. That gives you pretty much everything you need to know.

Originally posted by Darkside:

now that you mention it. Phished does seem more likely. Avoided the 2factor til now because of too much hassle. Got it set up today for both steam and e-mail. Thx for the tip.

Don't think it makes you account immune from compromise from phishing sites. It won't

If you got phished without it you can just as easily get phished with it. The phishing site will ask you for the code if it gets asked for it and it will only get asked for it if you have it active. It's just another key if you give it away like everything else you let them in.

Read post #6 thoroughly then stop using dodgy sites.

If you insist on using third party sites do it the safe way

1. Open Web browser
2. Login on Steams Official page
3. Visit Third party site
4. Look for and use the one click login button
5. If 4 doesn't work and you're asked for you username, password and Guard code your on a phishing site. LEAVE and DO NOT use again

Can also use sites like scamadviser.com to check how trustworthy a site is before using it. Works for any site not just Steam related. Use it whenever entering login credentials or banking data

Originally posted by Dr.Shadowds 🐉:

Phishing attacks are most common thing on the internet, you be shocked how it happens daily across all services, lost emails, lost accounts, so on, all because either they're not aware of such things, never got educated about it to not fall for it again repeatedly, some people ignore things, or just plain not pay attention at all just clicking things, and so on, so it's not a shocker things like that happens.

Here tips, and examples to help you give an ideal of types of scams, and phishing attacks.

Originally posted by Dr.Shadowds 🐉:

Here are the most common reason people get accounts hijack for any service really are as followed.
- Sharing account infomation with others. <--- Very common with impersonators, pretending to be Steam admin / support.
- Logging in on phishing sites. <--- Very common with skin gambling sites.
- Downloading / Installing Virus / Keylogger on your system.
- Using public devices that has keyloggers, such as cyber cafe, school computers, and etc...
- Storing your login credentials on a unsecured service that others has access to view.
- Using same login credentials for all your things, or using same login credentials on another service that had a data leak. Yes it does matter because even if it not related to Steam, if using same login credentials, hijackers will try to use those credentials to see what services you use with those credentials. https://haveibeenpwned.com/

YouTube™ Video: What is Phishing? 

Views: 487,208

Phishing scams are a growing threat on the Internet. By being aware of the scam, — you can feel confident in working with companies online. http://www.getcybersafe.gc.ca/index-eng.aspx

The type of story scammers say to you.

- "Hey vote for my team", and they link you a phishing site link, and try get you to login.

- "Hey I can't add you, please add me", and they try to start their scam with you.

- If you're friend with someone that got their account hijacked, you get scam message like, "I report you", "you been banned", and whatever to try scare you, and they tell you to trade your items to them, or if you have a login to phishing site may have a API key on account that redirect trades, they ask you to give them money, or etc...

- If you already got your account compromise by them, they change your display name to banned, or whatever, your display picture as well, they may delete your friends, and try to spend your wallet funds if you have any, also trade all your items, but if they see if you have mobile authenticator attached, they play their scam to get you to confirm the trade to get your items off your account to their account quicker if they're able to trick you into confirming the trade.


I show you few examples.

One example of phishing site 

Community Created Artwork for Steam Artwork

By: Dr.Shadowds 🐉

Never login from 3rd party sites, and if any site has an in webpage tab browser DO NOT PUT ANY INFO INTO IT! If you want to ask how this works, this is their web interface javascript, basically whatever info you put, it...

Scammer via Discord 

Community Created Artwork for Steam Artwork

By: Dr.Shadowds 🐉

Here a youtube video someone made that goes more indepth giving you a view example to help you learn more about these phishing attacks.

YouTube™ Video: Steam scam to be aware of (fake steam staff message) 

Views: 18,042

maybe new videos coming soon also.. or livestreams

YouTube™ Video: API-SCAM! What is it? How to PREVENT it and KEEP your CS:GO SKINS SAVE? 

Views: 37,933

So recently the API-Scam is getting more common and people still do not know about this. It is very easy to lose a lot of CS:GO Skins through it just because nobody knows it and phising and hacking...

YouTube™ Video: The "I accidentally reported you" to a Steam Admin SCAM 

Views: 61,885

Don't fall for this fake "Steam Admin" scam! Leave a like if you enjoyed the video! 👍 ✦ CHECK OUT MY WEBSITE ✦ Get balance & discounts on multiple sites Link: https://jordanr.net ✦...

YouTube™ Video: NEW STEAM VOTING SCAM! (I WAS SOLD ON THE DARKWEB!?!?!?!?) 

Views: 2,325

subscribe or ill manifest cancer in your firstborn Twitch: https://www.twitch.tv/nixnrl Twitter: https://twitter.com/home report his steam account: https://steamcommunity.com/id/XPEOF/

https://steamcommunity.com/discussions/forum/1/4956744526904317093/#c4956744526904653890

Thx for the comprehensive information!

While I can say that i am well aware of cyber security risks regarding phishing attempts and tricks and I am usually very mindful of these things, I must have still slipped up somewhere along the way. Could be that I did not pay close attention on the URL, did not look for signs to confirm the legitimity of a third party site or whatever. It does suck doe. After all we all have stressful days, when the cyber security only plays a secondary role and we simply dont have enough energy or time to be paying close attention to these things.

I got lucky this time, that no great harm was done and i am glad i was made aware of how lax i have become in this regard. Will start being more mindful again for sure.

Originally posted by Elucidator:

People who fall for this stuff don't tell us how they could have been informed, to prevent them from getting scammed or phished or otherwise tricked into giving away their account.

We inform people of these things only after they encounter such issue.

@OP, do you have any tips on how it helps expose you to these things (and inform you properly on how to recognize it and how to avoid getting hacked), before it happens? (not after)

Also do you know why people don't seem to be aware? It would help for future cases. Hopefully you won't get targetted a second time (through a new method maybe, or not)

I am not an expert on the subject so it would be arrogant of me to "inform" other people and risk potential misinformation and thus causing harm to others. I posted this because I experienced this particular way of how the phisher operated in regard to steam account, refunded games and unanthorised marketplace transactions in the hope that this post can be help to others with this particular problem, since i could not find a specific related post on the fly when I tried to look this up.

I myself am aware of the risks of phishing in general and educate myself on the trending phishing tactics regularyly as well. I am sure that my e-mail has been phished first due to me being lazy i.e. using same password on multible sites and services which are linked to the same e-mail. Back in the days it was easy to use different passwords cos i had like 4 accounts (e-mail, steam, wow and skype).

With how many accounts i have nowadays it would be impossible for me to keep track of all my passwords if I did not use the same passwords with slight variations. While i do update some of them like once every months, there are just too many accounts that i forget to manage the majority.

Originally posted by Elucidator:

People who fall for this stuff don't tell us how they could have been informed, to prevent them from getting scammed or phished or otherwise tricked into giving away their account.

Because there are plenty of warnings and Basic internet safety practices going back LONG before Steam existed. Phishing has also been done via Email and SMS.

Problem is people that fall for them often haven't bothered to read the warnings or learn about online safety....least not until AFTER they get phished. I'm guessing that's partly because

it's a boring topic to most
they can't be ****
Naive and/or Arrogant and think it won't happen to them.
It's an inconvenience
Takes more time to d o things a safe way

Built my Nephew a PC for Xmas and set him up a Steam account, Added a £10 Wallet card aswell, little money for sales plus it could be used for account recovery. Set him up with a password manager and Steam with a complex 490nf#f/3@rf8sjk=/ [password. I created a script that put the password for his password manager into the clipboard ready to paste. Not exactly the best of moves but it was better than none. Also gave them an old phone with the Authenticator on for Steam Guard. They had the phone and the Pin for it.

I also gave them all a warning about some of the scam methods and not to login on any none Steam site. I bookmarked the ONLY site they should be logging in to and that was already logged in anyway.

3 months later I get a call about my nephews account getting hacked. Clearly they ignored all the warnings. I later found at they removed the pin on the simless phone when they gave it to my nephew who is 13 with cognitive issues. They also changed his Steam password and the password to his password manager because it was too complex. Too complex to remember and type in? All they had to do was double click the script on his desktop. He didn't needed to know the password or login every time.

They couldn't follow the guide that many of us link to and I refused to talk them through it since they did it to themselves by ignoring all the safety advice in favour of easy and quick. They just created a new account for my Nephew. Only £50ish spent on games in 3 months wasted.

That's how stupid some people are.

Originally posted by Darkside:

Thx for the comprehensive information!

While I can say that i am well aware of cyber security risks regarding phishing attempts and tricks and I am usually very mindful of these things, I must have still slipped up somewhere along the way. Could be that I did not pay close attention on the URL, did not look for signs to confirm the legitimity of a third party site or whatever. It does suck doe. After all we all have stressful days, when the cyber security only plays a secondary role and we simply dont have enough energy or time to be paying close attention to these things.

I got lucky this time, that no great harm was done and i am glad i was made aware of how lax i have become in this regard. Will start being more mindful again for sure.

Np, my advice is bookmark, it super useful, and when type in name of site, it pop up what you're looking for, and just select it because you bookmark it, save trip from 2nd guessing things, and you know you're going to the site for sure.

Another thing is I suggest check bottom video, there trick using fake browser within the broswer, this is where trick some people as they only look at the URL, but wouldn't think about checking what going on the page itself until it too late. So if someone randomly message you out of the blue asking you do things that ask you to login, a simple check can save you a trip of this drama.

Originally posted by Elucidator:

People who fall for this stuff don't tell us how they could have been informed, to prevent them from getting scammed or phished or otherwise tricked into giving away their account.

We inform people of these things only after they encounter such issue.

@OP, do you have any tips on how it helps expose you to these things (and inform you properly on how to recognize it and how to avoid getting hacked), before it happens? (not after)

Also do you know why people don't seem to be aware? It would help for future cases. Hopefully you won't get targetted a second time (through a new method maybe, or not)

Problem is that even though a lot of scams, and phishing attacks are almost same methods, the issue is them reskining it everytime.

Example phone call scams.
- I'm your long lost relative blah blah blah scam.
- You won Blah blah blah scam.
- You own us, or we take action scam.
- You're wanted for illegal activity scam.
- Do you want to buy scam.
- Your family at the ER send money now scam.

You get the point, they try to use fear & greed as a way to scam people.

Now repeat it with email, now repeat it with random chats that happens online. Now you're starting see the picture of the problem. They keep changing story, the method, but it's the same steps each time, over, and over.

Now might ask how do we solve it, problem is unless we put camera on every electronic device as well software that basically backdoor that records everything, that always connected online, always watching, monitoring what you do & say, which you can already see how really unrealistic, and unreasonable that is such as privacy, and more. So it's nearly impossible to just solve it off the bat, and best Steam can do is react to reports, and if they slap on a bot that auto bans, there people that dumb enough to try plan pranks only to get hit with it for sure, but can't really complain, but there always off chance bot make a mistake as well as bots are not perfect, so only so much can be done, and they have get an AI to always keep learning scams new story lines, and AI are far from being perfect, so it's not simple to just solve that either without it causing problems, and think maybe it just make a few, this is going up agsaints millions of people, so it could hit way more than they can handle if things went hit the fan as well.

So best advice is learn about tactics scammers use, and ways they try to scam you, since they're pretty much similar or same repeating methods, and tactics used a lot, so not hard to catch on them.

Originally posted by Darkside:

With how many accounts i have nowadays it would be impossible for me to keep track of all my passwords if I did not use the same passwords with slight variations. While i do update some of them like once every months, there are just too many accounts that i forget to manage the majority.

No. No no no no no. I work in IT and i need several logins for each application that i have to look after, i have HUNDREDS of passwords.

Get a password manager!!

Originally posted by Darkside:

Originally posted by Dr.Shadowds 🐉:

Phishing attacks are most common thing on the internet, you be shocked how it happens daily across all services, lost emails, lost accounts, so on, all because either they're not aware of such things, never got educated about it to not fall for it again repeatedly, some people ignore things, or just plain not pay attention at all just clicking things, and so on, so it's not a shocker things like that happens.

Here tips, and examples to help you give an ideal of types of scams, and phishing attacks.

Thx for the comprehensive information!

While I can say that i am well aware of cyber security risks regarding phishing attempts and tricks and I am usually very mindful of these things, I must have still slipped up somewhere along the way. Could be that I did not pay close attention on the URL, did not look for signs to confirm the legitimity of a third party site or whatever. It does suck doe. After all we all have stressful days, when the cyber security only plays a secondary role and we simply dont have enough energy or time to be paying close attention to these things.

I got lucky this time, that no great harm was done and i am glad i was made aware of how lax i have become in this regard. Will start being more mindful again for sure.

it happens. i got drunk and bought a game i would never have gone near had i been sober.