Steam Guard won't protect anyone for their own stupidity by example, downloading malware, getting their PC, E-Mail and Mobile Device compromised.

Originally posted by Theblaze:

Steam Guard won't protect anyone for their own stupidity by example, downloading malware, getting their PC, E-Mail and Mobile Device compromised.

This.

If you don't do stupid moves, you don't really get your account stolen either.
https://support.steampowered.com/kb_article.php?ref=1266-OAFV-8478

9 years now and I haven't had my account stolen a single time, because it's really not that hard to keep it secure.

Don't get your computer compromised; don't get your mobile device compromised; be sceptical of what you see on the net and at the very least Google it before you enter it should there be enough reason to open it despite your doubts; always remember what sounds too good to be true usually isn't; don't enter your details on Steam lookalikes, I'm sure you can pay attention to the URL and its misspellings; or alternatively just log in on http://steamcommunity.com and resort to OpenID afterwards as then all you have to do is approve the login.

Basic internet common sense in otherwords.

People might feel safe to insert their details now more quickly.
Because extra protection.
And the one time code...... doesnt work..... so they insert a second.....

And account is gone.

If you want to keep your account safe there's some quick and easy steps

1) Activate steam email and/or phone authentication

2) ONLY log on to the email account on a secondary device such as a cellphone, tablet etc

3) NEVER enter your steam login info to any site other than steam or if you are 100% sure it's a site owned by Valve

ALso
Never tell your Steam account password to outsiders unless you really trust him or your best friend.

Originally posted by Cloud Boy:

ALso
Never tell your Steam account password to outsiders unless you really trust him or your best friend.

Not even then.

I've seen enough threads People complaining about their account being "stolen" because they though it was a good idea to share it with their so called "best friends".

Originally posted by Cloud Boy:

ALso
Never tell your Steam account password to outsiders unless you really trust him or your best friend.

Rather.

Don't tell your password to anyone.

There's literally no reason to tell anyone.

Be careful of scam phishing sites. Simply checking if the site is secured is not enough. It needs to have the words [Valve Corp US.] in the address bar. steamcommunity.com and steampowered.com are generally the only genuine sites of Steam I think.

If a friend sends you a link, make absolutely sure it is safe to visit, as even visiting a malicious website is enough to infect your computer. Virus Total[www.virustotal.com] is the best way of checking if a website is malicious or not without the need to visit it.

Keep in touch with your old email that you used in your Steam account before. So even if someone were to hijack both your Steam account and your current email account, you still have access to your old one, which you can use to lock your account in your mail inbox. Many people are not aware of the fact that you can use any account-related email to lock your account when hijacked. It doesn't matter how old or which email address you used back then - any of these ever created should work.

Doesn't really apply here, but be careful of adding users who have had a history of Trade/Market bans. Better safe than sorry, as the items traded are final and not irreversible.

Do not overlook the [Remember Me] checkbox when signing in on a public computer. I'm pretty sure most users already know this, so this is probably just a heads up!

Make your password complicated. If you're afraid of losing your password, use a password manager. They generally also have a feature of generating incredibly strong passwords, so give that a go.

Keep your anti-virus and OS up-to-date. Make sure your anti-virus is doing what it's supposed to in the background. No questions asked.

An up-to-date browser is very important, regularly install updates if not automatically. Make sure to use a modern browser like Chrome and Firefox. Be extremely weary of any addons or plugins on your browser. Disable any that seem suspect. I recommend HTTPS Everywhere as it forces a secure connection whenever possible to ensure there are no middleman attacks.

Adjust your behavior. This is a big one, using common sense and having a level head can mean the difference between being hijacked and not. The basic rule of thumb is "if it's too good to be true, it probably is."

Be cautious when using software and only download them from official sources; not mirrors from third-party sites. Heard about an amazing new program or tool? Don't be so hasty to download and give it a try, research it thoroughly before you trust it. Any program you install on your machine should be trustworthy.

I hope your friend gets his account back real soon ^^ And always keep yourself safe OP

Originally posted by Gabby_NEW 変態！:

Be careful of scam phishing sites. Simply checking if the site is secured is not enough. It needs to have the words [Valve Corp US.] in the address bar. steamcommunity.com and steampowered.com are generally the only genuine sites of Steam I think.

Always this!
There is a new phishing method out that shows you the original login site but replaces the script with its own which grabs your data and uses it to steal your account.

Originally posted by cinedine:

Originally posted by Gabby_NEW 変態！:

Be careful of scam phishing sites. Simply checking if the site is secured is not enough. It needs to have the words [Valve Corp US.] in the address bar. steamcommunity.com and steampowered.com are generally the only genuine sites of Steam I think.

Always this!
There is a new phishing method out that shows you the original login site but replaces the script with its own which grabs your data and uses it to steal your account.

Why people don't just sign in on http://steamcommunity.com and then use the [Sign in] button as already signed on goes beyond me. https://i.imgur.com/NkXxvI8.png

Originally posted by Teutep:

Originally posted by cinedine:

Always this!
There is a new phishing method out that shows you the original login site but replaces the script with its own which grabs your data and uses it to steal your account.

Why people don't just sign in on http://steamcommunity.com and then use the [Sign in] button as already signed on goes beyond me. https://i.imgur.com/NkXxvI8.png

Beats me. On an unrealated note, I love your Steam skin!

Originally posted by Gabby_NEW 変態！:

Originally posted by Teutep:

Why people don't just sign in on http://steamcommunity.com and then use the [Sign in] button as already signed on goes beyond me. https://i.imgur.com/NkXxvI8.png

Beats me. On an unrealated note, I love your Steam skin!:Ageha:

PixelVision 2, if you're curious.

I also use -noverifyfiles just to have a Super Mario Odyssey - Star Sound as my screenshot sound.

Originally posted by Teutep:

Originally posted by Gabby_NEW 変態！:

Beats me. On an unrealated note, I love your Steam skin!

PixelVision 2, if you're curious.

OwO

Originally posted by Theblaze:

Originally posted by Cloud Boy:

ALso
Never tell your Steam account password to outsiders unless you really trust him or your best friend.

Not even then.

I've seen enough threads People complaining about their account being "stolen" because they though it was a good idea to share it with their so called "best friends".

Also why would someone go through the trouble of sharing their own passwords to even of their trusted friends? I could not possibly think of a good reason of this other than for them to use their account. And this is a violation of Steam's Subscriber Agreement.

Originally posted by Gabby_NEW 変態！:

Also why would someone go through the trouble of sharing their own passwords to even of their trusted friends? I could not possibly think of a good reason of this other than for them to use their account. And this is a violation of Steam's Subscriber Agreement.

Family Sharing for example requires you to login on the guest computer first. It's easier to just share your password than using a RAT.
Also, it's your best friend, you see them like every day in school/work/sports club and you know them for 3 days/months/years. What could ever go wrong?

Originally posted by Teutep:

Why people don't just sign in on http://steamcommunity.com and then use the [Sign in] button as already signed on goes beyond me. https://i.imgur.com/NkXxvI8.png

Why people still fall for century old scams?
Why people flock to gambling sites after tmartn and prosyndicate got outed for scamming with theirs?
Why people shut down common sense when in front of a PC?