Ziedrich's Steam account has been hacked, DO NOT click on any links he sends you.
polycounter lvl 10
He sent me this about an hour ago: 7:19 PM - Ziedrich: add my new acc h t t p://steamcomunily.com/profile/6258923158712436/ (added spaces so no one clicks on it)
Notice the address, takes you to an exact copy of steam, profile pages and all, and asks for user and password info to login just like always, when you get the steamguard email to verify that you're on a new computer the phisher is spoofing his IP address so it appears to be coming from your city. I only noticed something was wrong because I know my IP address by heart, so I double checked the URL I had clicked on and nearly shat a brick (I didn't input the verification code thankfully, and I've already reset my password).
If you're reading this Ziedrich, make sure you contact valve and verify that your bank account information for your workshop contributions hasn't been changed, that would REALLY suck.
Also, when I didn't give the verification code I was friended by the guy.... here's how the conversation went. Damn phishers.
7:47 PM - mrpresident: yes?
7:48 PM - loveiswar230994: hey
7:49 PM - mrpresident: why did you friend me?
7:50 PM - loveiswar230994: my friend jimmy ask me add you, and ask you, can you add him? its his new profile
7:53 PM - mrpresident: I was checking to see how good your english was, nice try, you almost got me with that http://steamcomuniLy.com/ bullshit, I just changed my password, you even had a philadelphia IP address somehow
7:53 PM - mrpresident: can you tell me where the profit in this is?
7:53 PM - mrpresident: how do you make money off of stealing people's steam IDs?
7:55 PM - loveiswar230994: hah
7:55 PM - loveiswar230994: its buisness
7:55 PM - loveiswar230994: its big money.
7:55 PM - loveiswar230994: and you think i say you all what i do and what i have?)
7:55 PM - mrpresident: I'm wondering HOW is it big money?
7:56 PM - mrpresident: do you sell the accounts w/ the games on it?
7:56 PM - loveiswar230994: with items
7:56 PM - mrpresident: I'm honestly curious
7:56 PM - loveiswar230994: games i dont need
7:56 PM - loveiswar230994: and accs
7:56 PM - mrpresident: jeez
7:57 PM - loveiswar230994: its buisnees:)
7:58 PM - mrpresident: are you actually in the states? the IP address is actually nearby enough I might've believed it if I didn't know my own IP address, that's what tipped me off, then I double checked the URL
7:59 PM - loveiswar230994: lol
7:59 PM - loveiswar230994: ofc not from states
7:59 PM - loveiswar230994: i have in all city my peoples
8:00 PM - loveiswar230994: more guys dont chek url ect and then was hacked
8:02 PM - mrpresident: people trust their friends on steam I guess, dont think it might not actually be them sending the message
8:03 PM - loveiswar230994: yeap
8:03 PM - loveiswar230994: but your friend was hacked:)
8:03 PM - mrpresident: the same way you almost did to me?
8:04 PM - loveiswar230994: ofc
8:06 PM - mrpresident: how long have you been doing this for? it's a pretty elaborate system
8:07 PM - loveiswar230994: its secret, i say more to you, so gl and bb, and when click some see what you click, gl!
8:07 PM - loveiswar230994 is now Offline.
Think I should throw this shit up on reddit? Or are phishing scams like this old news to everyone? I know they've been around for awhile but I haven't seen any elaborate enough to use IP spoofing to try and fool people in the steamguard verification emails.
Notice the address, takes you to an exact copy of steam, profile pages and all, and asks for user and password info to login just like always, when you get the steamguard email to verify that you're on a new computer the phisher is spoofing his IP address so it appears to be coming from your city. I only noticed something was wrong because I know my IP address by heart, so I double checked the URL I had clicked on and nearly shat a brick (I didn't input the verification code thankfully, and I've already reset my password).
If you're reading this Ziedrich, make sure you contact valve and verify that your bank account information for your workshop contributions hasn't been changed, that would REALLY suck.
Also, when I didn't give the verification code I was friended by the guy.... here's how the conversation went. Damn phishers.
7:47 PM - mrpresident: yes?
7:48 PM - loveiswar230994: hey
7:49 PM - mrpresident: why did you friend me?
7:50 PM - loveiswar230994: my friend jimmy ask me add you, and ask you, can you add him? its his new profile
7:53 PM - mrpresident: I was checking to see how good your english was, nice try, you almost got me with that http://steamcomuniLy.com/ bullshit, I just changed my password, you even had a philadelphia IP address somehow
7:53 PM - mrpresident: can you tell me where the profit in this is?
7:53 PM - mrpresident: how do you make money off of stealing people's steam IDs?
7:55 PM - loveiswar230994: hah
7:55 PM - loveiswar230994: its buisness
7:55 PM - loveiswar230994: its big money.
7:55 PM - loveiswar230994: and you think i say you all what i do and what i have?)
7:55 PM - mrpresident: I'm wondering HOW is it big money?
7:56 PM - mrpresident: do you sell the accounts w/ the games on it?
7:56 PM - loveiswar230994: with items
7:56 PM - mrpresident: I'm honestly curious
7:56 PM - loveiswar230994: games i dont need
7:56 PM - loveiswar230994: and accs
7:56 PM - mrpresident: jeez
7:57 PM - loveiswar230994: its buisnees:)
7:58 PM - mrpresident: are you actually in the states? the IP address is actually nearby enough I might've believed it if I didn't know my own IP address, that's what tipped me off, then I double checked the URL
7:59 PM - loveiswar230994: lol
7:59 PM - loveiswar230994: ofc not from states
7:59 PM - loveiswar230994: i have in all city my peoples
8:00 PM - loveiswar230994: more guys dont chek url ect and then was hacked
8:02 PM - mrpresident: people trust their friends on steam I guess, dont think it might not actually be them sending the message
8:03 PM - loveiswar230994: yeap
8:03 PM - loveiswar230994: but your friend was hacked:)
8:03 PM - mrpresident: the same way you almost did to me?
8:04 PM - loveiswar230994: ofc
8:06 PM - mrpresident: how long have you been doing this for? it's a pretty elaborate system
8:07 PM - loveiswar230994: its secret, i say more to you, so gl and bb, and when click some see what you click, gl!
8:07 PM - loveiswar230994 is now Offline.
Think I should throw this shit up on reddit? Or are phishing scams like this old news to everyone? I know they've been around for awhile but I haven't seen any elaborate enough to use IP spoofing to try and fool people in the steamguard verification emails.
Replies
However, this scam has already been reported before-no need for Reddit. Just remember to check your URL's when you get weird messages.
Hopefully I can get my account back as soon as possible too!
Ziedrich, did you already get your account recovered by the valve guys? Danidem told me to give him my email so that a valve guy could give me my account back, but no info back on that yet.
That shit sucks so much, I don't know how it is these days but I remember it being awful trying to get a steam account back 2-3 years ago.
WHAT GREAT GUYS A++
Hopefully you guys both get your stuff back.
Make sure you guys quadruple check any link people send you!
To be honest maybe they should change the mechanism, so instead of safe code in mail from STEAM there would be an direct link, that would take you to steam, that would help to avoid pasting safe code into steam with scammed address.
THX