Originally posted by cSg|mc-Hotsauce:

Secure your account. All the steps, in order...

Scan for malware. https://www.malwarebytes.com/ or with whatever

Deauthorize all devices https://store.steampowered.com/twofactor/manage

Change your password on a secure device.

Generate new back up codes. https://store.steampowered.com/twofactor/manage

Revoke the api key (this should be empty) https://steamcommunity.com/dev/apikey

Report the other account through their profile page.

Next time, change/reset your password within 2 weeks of when the awards were given out to revoke them all, within that 2 week period.

:nkCool:

Originally posted by MaverickC45:

My account is safe...

Originally posted by cSg|mc-Hotsauce:

Originally posted by MaverickC45:

My account is safe...

For someone to hijack it and send all your points to another account, it most definitely is not safe.

:nkCool:

Originally posted by Maria:

Look up session hijack and bloody stealer malware.

tl;dr steam has done their best to help secure your account, but they can only do so much. In the end, users are the weakest link.

Originally posted by MaverickC45:

Originally posted by cSg|mc-Hotsauce:

Secure your account. All the steps, in order...

Scan for malware. https://www.malwarebytes.com/ or with whatever

Deauthorize all devices https://store.steampowered.com/twofactor/manage

Change your password on a secure device.

Generate new back up codes. https://store.steampowered.com/twofactor/manage

Revoke the api key (this should be empty) https://steamcommunity.com/dev/apikey

Report the other account through their profile page.

Next time, change/reset your password within 2 weeks of when the awards were given out to revoke them all, within that 2 week period.

:nkCool:

My account is safe (I never use third party software, All my passwords are written on paper), I've checked my steam account logins and there's nothing suspicious. I didn't even have internet access when the theft happened.

Also, there are thousands of users who have been robbed and the user is still not banned (maybe he's not the culprit but he's definitely involved in some way) he hasn't logged in for months. That seems suspicious to me.

Originally posted by RPG Gamer Man:

Originally posted by MaverickC45:

My account is safe (I never use third party software, All my passwords are written on paper), I've checked my steam account logins and there's nothing suspicious. I didn't even have internet access when the theft happened.

Also, there are thousands of users who have been robbed and the user is still not banned (maybe he's not the culprit but he's definitely involved in some way) he hasn't logged in for months. That seems suspicious to me.

That is what everyone says until they scan and find something. Always do this or your account is up for grabs. But it is your choice OP. Leave your account unsecure, or run the above and make sure it is safe.

Originally posted by MaverickC45:

Originally posted by cSg|mc-Hotsauce:

For someone to hijack it and send all your points to another account, it most definitely is not safe.

:nkCool:

This means that thousands of users think they are safe but are not, even with SteamGuard enabled.

How is it possible for a hacker to log in from another country if Steam Guard security is enabled?

What is SteamGuard for? You are supposed to accept each new access through the application

Originally posted by MaverickC45:

It seems you don't know anything and Y don't understand, the hacker didn't use my computer or phone, he logged in from a new computer in another country and SteamGuard didn't do its job