This thread is to build awareness and to get possible assistance in shutting down a Steam Account Phishing website. I was recently informed that this is one of many.


For safety purposes the URL will be listed below base64 encoded. I will also explain how you can reach the site without having to decode the URL. The url being posted is strictly for reference purposes and to show that this is a real thing.

A WARNING TO ALL USERS: The site listed below is a PHISHING website which will steal users information. It is NOT the real steamcommunity.

Please make sure whenever you go to the steam community website it has a certificate and is under an "https" secured protocol. The url will be shown as https://steamcommunity.com with no spelling errors.


The website is simply the steamcommunity.com website with the word "community" misspelled to "comunnity" which will then take you to the website that steals users information upon login and downloads a malware.

I urge all Steam users to take precautions when visiting links from your EMail, social networks, and friends on Steam. Please be sure BEFORE and AFTER visiting the site that it is secure. Even if the link in your EMail LOOKS correct, it may not be, here are simply steps to prevent entering a phishing website.

1. Right Click the link in your EMail or other -> Copy Link Address
2. Proceed to paste the link into a word processor such as Notepad, if the URL is the same as the one you are trying to reach, it is secured.

To assist me in reporting this domain please visit the following sites and report the phishing URL:

http://publicdomainregistry.com/report-abuse/
http://www.google.com/safebrowsing/report_phish/


What the Attacker Does

The attacker gets the users' information then proceeds to

1. Change the EMail address of the phished account.
2. Attempt to phish friends on the phished user's account.
3. Possibly steal information such as CREDIT CARD INFORMATION and more.

Please help me build awareness of this issue by spreading the word as this is a serious issue that needs to be resolved immediately. It is a common mistake to misspell words when typing in a URL and visiting links in your EMail from friends, family, or a trusted community or service without properly confirming the identity of the domain.

The domain information including site owner and more can be obtained by using whois. It is a Russian website registered under webnames.ru the EMail for contact of this website is support@webnames.ru.


Thank you for your concern,

Setolo