Автор сообщения: legitimately acquired acc

Google does it, microsoft does it, Facebook does it.... for some reason the braindead monkeys at valve havent implemented a common sense thing yet.

You missed dozens of oter companies that don't do it.

Автор сообщения: legitimately acquired acc

No wonder so many ppl get phished if account owner cant even easily tell/doesnt get a security notification if someone from different part of the world is logging in to his account... and can stay logged in for as much as he wants without owner ever knowing.

Valve not displaying this information has no effect of peoples accounts getting phished. It's not Valve that logs in on phishing sites. Thats silly greedy and niave users. Even if the information was displayed the bot on phishing sites would be into a users account a second after the user logs in on the site.

I never look at my Steam guard page, not on the client and not on the Authenticator either. So your suggestion wouldn't help me. I'm not going to be using phishing sites anyway but the point is never check those pages so would not benefit from from what you are suggesting.

Автор сообщения: legitimately acquired acc

CONCLUSION: it is extremely easy to phish someone and they have no way of knowing or reason to get suspicious at all UNTIL its already too late and they have been fked for their items/account already - this suggestion would 99.9% of times prevent it coming this far since users would be notified and could easily check if someone unwanted logged in to their account.

Plenty of reasons to be suspicious.

1. Don't trust random people or even friends that send links. I say friends because they could be compromised.
2. Don't trust random sites. not even if a youtuber or someone says it's safe. Don't trust it.
3. Don't believe the Get your 'Free' s*** here
4. is the connection secure? https? Even if it is still proceed with caution by checking the site using a third party.
5. Use a site like https://www.scamadviser.com/ to check sites. Good for all sites not just gaming.

99.9% is well a users password and Steam Guard code should protect peoples accounts. But users already ignore advice about scams, ignore the common 'Stranger danger' saying and fail to perform some basic checks.

And as I can't remember the last time I viewed the Steam Guard screen it would be of no use.

I'd say notification to the Authenticator or email at the time of a new successful login on a new device with the option to select 'Not me, Lock account or change password.' Only on new devices.

You really think people look at those pages?

And with Steamguard you are notified of a login on a new device, including browsers after clearing cache.

Автор сообщения: legitimately acquired acc

And optionally, show a quick alert notification (or email) about any new steam login from a different location, on currently logged in sessions in steam client and browser and mobile.
Google does it, microsoft does it, Facebook does it.... for some reason the braindead monkeys at valve havent implemented a common sense thing yet.

No wonder so many ppl get phished if account owner cant even easily tell/doesnt get a security notification if someone from different part of the world is logging in to his account... and can stay logged in for as much as he wants without owner ever knowing.

CONCLUSION: it is extremely easy to phish someone and they have no way of knowing or reason to get suspicious at all UNTIL its already too late and they have been fked for their items/account already - this suggestion would 99.9% of times prevent it coming this far since users would be notified and could easily check if someone unwanted logged in to their account.

If people were going to look for that stuff and understand that stuff, they would learn to look at the address bar before putting in all their information and see that it is not the actual Steam website they are putting their info into.

If they simply did that, it would stop all phishing. If people stopped going to these sites because they were promised free stuff or promised to buy their items for more than what they would get on steam (basically stop being greedy) then it would stop all phishing.

Adding what you want will not help, because the people who would understand that stuff and actually look for it would understand.

There is also the fact that at the very least it could be faked, all they have to do is include the persons current IP which they get from the person visiting the phishing website. Or they figure out the code, and include it on their website to again make it look legit.

https://help.steampowered.com/en/accountdata/SteamLoginHistory

https://help.steampowered.com/en/accountdata/MachineAuthName

Автор сообщения: Crazy Tiger

You really think people look at those pages?

And with Steamguard you are notified of a login on a new device, including browsers after clearing cache.

no u arent... if u have mobile authenticator... u just enter the code on phishing site and they login to ur acc without u ever knowing.

Автор сообщения: cSg|mc-Hotsauce

https://help.steampowered.com/en/accountdata/SteamLoginHistory

https://help.steampowered.com/en/accountdata/MachineAuthName

:qr:

thats hidden deep in the support pages, barely anyone checks that and i bet most dont even know that this is there. If they would get notified about a new login, they probably would check... BUT WITHOUT KNOWING that someone logged on their account ofc they wont...
Also this is missing ip adress which Steam 100000% does save but doesnt show for some reason. And device types are also unclear there, just in some code - not user friendly.

Автор сообщения: legitimately acquired acc

Автор сообщения: cSg|mc-Hotsauce

https://help.steampowered.com/en/accountdata/SteamLoginHistory

https://help.steampowered.com/en/accountdata/MachineAuthName

thats hidden deep in the support pages, barely anyone checks that and i bet most dont even know that this is there. If they would get notified about a new login, they probably would check... BUT WITHOUT KNOWING that someone logged on their account ofc they wont...
Also this is missing ip adress which Steam 100000% does save but doesnt show for some reason.

You get an email with that info anyways. So... Yeah...

Автор сообщения: cSg|mc-Hotsauce

Автор сообщения: legitimately acquired acc

thats hidden deep in the support pages, barely anyone checks that and i bet most dont even know that this is there. If they would get notified about a new login, they probably would check... BUT WITHOUT KNOWING that someone logged on their account ofc they wont...
Also this is missing ip adress which Steam 100000% does save but doesnt show for some reason.

You get an email with that info anyways. So... Yeah...

:qr:

If you have steam guard codes by email, only then. If you have mobile authenticator = nothing

Автор сообщения: legitimately acquired acc

Автор сообщения: cSg|mc-Hotsauce

You get an email with that info anyways. So... Yeah...

If you have steam guard codes by email, only then. If you have mobile authenticator = nothing

You still get an email.