Apparently one of my friend on steam got their account hack and they impersonated that person to get my account hacked. I'm kinda panicking right now? Will I be able to get my account back? Will I lose all my items? what should I do? Also not sure if its safe to post the person's profile in this thread so I won't for the time being. Anyone else have this before? I'm really scared.

5 years ago

Comment has been collapsed.

5 years ago
Permalink

Comment has been collapsed.

I did and send a request already. Scanned my pc. I feel so stupid for clicking a link. I had just spoke to him recently and didn't think anything like this would happen. I feel really lightheaded right now.

5 years ago
Permalink

Comment has been collapsed.

That explains your phished account bombarding me with messages :-))))

5 years ago
Permalink

Comment has been collapsed.

Will I be able to get my account back?

Yes.

Will I lose all my items?

Yes. You probably already lost them.

what should I do?

Contact steam support. Send them any receipt or last key you activated on your account.
They are quite fast :)

5 years ago
Permalink

Comment has been collapsed.

Why should he lose all his items, this happened to my friend and he got all his items back, there was also one guy on youtube that recorded video about it, and hr got all his items back too.

5 years ago
Permalink

Comment has been collapsed.

Then maybe it depends on luck. Some people lost their items :)

5 years ago
Permalink

Comment has been collapsed.

It's very circumstantial.

No reason to give false hope. Better to be prepared for the worst and be relieved instead of expecting the best and being extremely disappointed.

5 years ago
Permalink

Comment has been collapsed.

you had a friend have this problem before? guess there goes my 300 dollars in trading cards and 30 in steam wallet. Eff me

5 years ago
Permalink

Comment has been collapsed.

Talk to steam support about that. You may be able to recover the items. Just letting it go is rewarding hackers.

5 years ago
Permalink

Comment has been collapsed.

Steam support don't recover loosed/robbed inventory stuff. It give a thread from them to that fact, somewhere at the steam pages.

Its a 50:50 chance to get his account back with all his stuff or with a robbed inventory.

5 years ago
Permalink

Comment has been collapsed.

Some people did get all/most of their stuff returned after their inventory was emptied. Perhaps if it's still in the robber's account, it can be returned. I guess that works on a case by case basis. Steam just doesn't guarantee it for obvious reasons, but it's not impossible.

Also, they can't trade away your trading cards for 14 days or something because of the cooldown, so it should be okay. Fingers crossed.

5 years ago
Permalink

Comment has been collapsed.

When i remember me right is the "we don't restore loosed/robbed items" politic since last year.
Because they normaly double/clone the items and not kill the stolen ones don't question me why, that part i didn't understand and they don't want harm the market because of more items that lower the price for all.
Maybe people used friends lvl 0 accounts for "hiijacking a account" + "steal inventory stuff" and then reported it and have in the end 2x the inventory, 50% for the friend and 150% for themself, win:win for all. Obvious not for steam/valve. Only my thoughts to it from 26 years online experiences. I don't know if people have done that scenario.

Before that date they restored inventory stuff.

So maybe you heared it from "long ago" restored items ?

5 years ago
Permalink

Comment has been collapsed.

Have hope.
Some people didn't lost everything. Some got their things back. And I just wrote about what I read on forums. Luckily haven't experienced anything like this yet.

5 years ago
Permalink

Comment has been collapsed.

Don't expect to get your stuff back. But also don't give up on them. Do your best to tell Steam what you had and bug them into giving your stuff back.

5 years ago
Permalink

Comment has been collapsed.

Steam support don't recover loosed/robbed inventory stuff. It give a thread from them to that fact, somewhere at the steam pages.

Its a 50:50 chance to get his account back with all his stuff or with a robbed inventory.

5 years ago
Permalink

Comment has been collapsed.

They will have most likely already sent any giftable item away, if you had authenticator on - even if its removed they wont be able to execute trades until the lockout passes (which goes into effect when the authenticator is removed) - if you didn't have authenticator then you should have a trade wait period in place anyways. The giftable items are another item and those are 99% gone, but if you had purchased them yourself and have the information regarding their purchase you should be able to get them back with the help of steam support, they will do that but you will need to provide all the evidence they require.

5 years ago
Permalink

Comment has been collapsed.

Was that spindagame or rollthegame crap? I almost lost my account too. Apparently I was quick to change password with the help of the steam guard

5 years ago
Permalink

Comment has been collapsed.

yeah it was. would've thought my antivirus wouldv'e tried to redirect me from a page like that. it normally does.

5 years ago
Permalink

Comment has been collapsed.

as long as the page does not contain known malicious code antivirs cannot redirect you from it. Some may but it depends on user reports (some antivirs have reputation system for websites, if a lot of users report page you will get warning when trying to access it), but as they depend on reports when new page appears it willt ake time until enough reports get filled for page to get blacklisted.

5 years ago
Permalink

Comment has been collapsed.

really sorry to hear that :/

5 years ago
Permalink

Comment has been collapsed.

so far my inventory hasn't been touched. thank god all my 3 cent profile backgrounds are still there! :D

5 years ago
Permalink

Comment has been collapsed.

Deleted

This comment was deleted 5 years ago.

5 years ago
Permalink

Comment has been collapsed.

You sent me that phishing links :D

5 years ago
Permalink

Comment has been collapsed.

Ye you sent me like 5 so far xD

5 years ago
Permalink

Comment has been collapsed.

Still sending that link

5 years ago
Permalink

Comment has been collapsed.

Did you have mobile authenticator app attached to you account?

5 years ago
Permalink

Comment has been collapsed.

I did and they found a way to remove it and the phone from my account. I don't know how but they did.

5 years ago
Permalink

Comment has been collapsed.

They must have gotten your Steam Recovery code. That's the only way I could think of that allows them to do that.
Did you connect to this site with your phone? Maybe they got into it.

5 years ago
Permalink

Comment has been collapsed.

Pretty sure I did. I was half watching something on tv while I did this and was already exhausted so obviously that helped.

5 years ago
Permalink

Comment has been collapsed.

Same here, i won key from user in friend list he send me link to site https://spindatgamex.com/ ther i trie login, and my account was stolen. Send mail to recover
IP from stole my accaunt was 194.67.197.222 (RU)

5 years ago*
Permalink

Comment has been collapsed.

Can you not post a link to a site that steals accounts? Or call out users?

5 years ago
Permalink

Comment has been collapsed.

No, it need to other peoples to know what exactly site stole accounts to take measures, and know peoples who may related to stole accounts, or is he in your friends and also got a message on this site. Or messages may come on my behalf to peoples in me friend list

5 years ago*
Permalink

Comment has been collapsed.

It's in violation of several site rules and in violation of basic internet courtesies. Keeping part of the site name for constructive reference is likely fine, but direct linking to any kind of problematic site is not only going to get you in trouble, it's just a straight dick move regardless.

5 years ago
Permalink

Comment has been collapsed.

No, it need to other peoples to know what exactly site stole accounts to take measures..

Other people have given warnings and advice regarding the account thefts, all without violating our rules. Telling us that someone's account seems to have been taken over by a bot would have probably been OK. Telling us about a specific message being sent by that bot would have been OK. Accusing someone of hacking or stealing other people's accounts is not OK. Disclosing other people's IP number is not OK. Posting a link that will probably harm anyone clicking on it is not OK.

Other people tried to warn you, but you failed to listen and correct your post. That means our Support Staff is now forced to take measures. Please review the site Guidelines and FAQ during your time out.

5 years ago*
Permalink

Comment has been collapsed.

Hi! I dont understand something... He brokes the rules, yeah, its completily understand that, and recive a suspencion, ok, now, yesterday I see a thread about something (not essencial but), and a lot of mesages form 2 or 3 users insulting themself... but I dont see that users are suspended,
I think, they broke a lots of rules, they call out, the insult, etc...

I recive a mesaje from one of the hacked accounts, and aboid it, becouse, i always do the reserch first, and I hate the spam...
But there maybe a lot of us, that, like me, dindt know about the hacked accounts until now...

So, my basic question is, why you choose when to apply the suspencion to the broke rules in less than an hour, and when you dont take any action to other rules brokers...

(sorry for my basic and bad, to bad english)

5 years ago
Permalink

Comment has been collapsed.

I think, they broke a lots of rules, they call out, the insult, etc...

Some users take the time to call our attention to rule-breaking by creating a Support ticket. We investigate all such tickets when we have the time to do so. As for those incidents which are not reported, we deal with them when we find them.

So, my basic question is, why you choose when to apply the suspencion to the broke rules in less than an hour, and when you dont take any action to other rules brokers...

There will always be people who "break the rules." Some of them do it out of ignorance, and some of them do it knowingly. When someone is caught doing it, they are usually punished. It is not possible, however, for the police to be everywhere at all times. The man who runs a red light in front of a policeman should not be surprised when he gets pulled over for it.

In SteamGifts, it is common for Support Staff to read any thread which seems to highlight an issue or problem for our users in the hope that we may be helpful (if possible). That makes it highly likely that any misbehavior within such threads will be noticed by Support Staff.. In this case, the guy had over an hour to correct himself, and was prompted to do so by other members of the community. He did not listen to them.

5 years ago*
Permalink

Comment has been collapsed.

thanks for the reply!.

Hope you understand my bad english.
yes! i know you guys work hard here!, just call my attention the "dilema" from yesterday.
personally I dont like the discusion, here on the internet, not even in my real life.

and now we have a lots of accounts hackeds... Im still reciving mesajes on steam chat, I just ignore them and hope, these users can recover theirs accounts

So, thanks for taking your time to replying me

5 years ago
Permalink

Comment has been collapsed.

While I agree you can't call out, in this case the compromised users are not at fault, they are also victims, so it "kind" of makes sense to say it.

If a mod disagrees, of course we have to remove the users' names.

5 years ago
Permalink

Comment has been collapsed.

Sorry about that mate. Half asleep this morning and followed a link from a friend and lost my account as well.

Good news is that the password change and authenticator removal should trigger a 15 day cooldown so hopefully we wont loose anything.

5 years ago
Permalink

Comment has been collapsed.

why you call out users who are in the same boat like you?

5 years ago
Permalink

Comment has been collapsed.

Deleted

This comment was deleted 5 years ago.

5 years ago
Permalink

Comment has been collapsed.

"Of course, it would be less trouble if people would just check the URL of pages where they're entering their credentials, but apparently that's just too much to ask..."

And you are mister perfect who has never made a mistake in his life.

Apart from that last arrogant sentence, I agree with everything else you said.

5 years ago
Permalink

Comment has been collapsed.

Deleted

This comment was deleted 5 years ago.

5 years ago
Permalink

Comment has been collapsed.

I used to shake my head at people that this sort of shit happens to. First time it has happened to me, normally I am more vigilant.

I blame it on the fact I was hung over and half asleep, plus I trusted the dude who sent me the link. ;)

5 years ago
Permalink

Comment has been collapsed.

I trusted the dude who sent me the link.

That's exactly what these kind of scams are banking on. People getting the link from a friend are more likely to trust it.

5 years ago
Permalink

Comment has been collapsed.

"seems appropriate security-wise" actually no its still calling out., your behavior is absolute hypocrite.

5 years ago
Permalink

Comment has been collapsed.

Deleted

This comment was deleted 5 years ago.

5 years ago
Permalink

Comment has been collapsed.

:-D

5 years ago
Permalink

Comment has been collapsed.

It is, in fact, calling out. Posting the site and user information was unnecessary.

5 years ago
Permalink

Comment has been collapsed.

but now the user is suspended and can't delete the information

5 years ago
Permalink

Comment has been collapsed.

Let us hope that he cleans things up when he returns.

5 years ago
Permalink

Comment has been collapsed.

not that I want to tell you how you should do your job, but wouldn't it better to let him clean up before, and then suspend him?

5 years ago
Permalink

Comment has been collapsed.

I've been saying that for a while. The current system is moronic.
Rather than end the damage after an hour when the user can delete it themselves they ensure the violating content stays up for days.
Either delete the content that is so outrageous that you need to suspend the user when you do, or don't go out of your way to ensure it stays up for as long as possible.

5 years ago
Permalink

Comment has been collapsed.

The best scenario would have involved him cleaning it up when the mistake was pointed out, thereby avoiding suspension.

5 years ago*
Permalink

Comment has been collapsed.

obviously, but he clearly didn't understand what the problem was
we would live in a better world if people would always read and follow the rules

5 years ago
Permalink

Comment has been collapsed.

The user's account was likely hacked same as yours. Now your account is sending links to people too, so it's a little unfair to call out specific users who had no part in it. :P He just fell for the same crap that you did. You should remove his SG profile from your post, imo.

5 years ago
Permalink

Comment has been collapsed.

Wasn't it a bit suspicious that the fake Steam login page had some text in Russian (well, I think it's Russian, or something similar)? XD

5 years ago
Permalink

Comment has been collapsed.

Don't know what page you looked at smart arse but the one I went to had no Russian.

5 years ago
Permalink

Comment has been collapsed.

Was there any need to insult?

I used the link posted, and the window that opens to login (that tries to mimic Steam login) has some Russian bellow the login button.

5 years ago
Permalink

Comment has been collapsed.

Your post made you come across as a smart arse. So yes.

You got it light though, some other smart arse prick just got a response that will probably get me banned. :D

5 years ago
Permalink

Comment has been collapsed.

Thanks for posting this, I just got three messages in a row from someone I apparently traded with at some point all linking to that site. Seemed extremely suspicious so did a search on google and found your post.

5 years ago
Permalink

Comment has been collapsed.

Please edit your post to remove the link to the scam site.

5 years ago
Permalink

Comment has been collapsed.

To people who had their account stolen like me, you may have received an email that your mobile authenticator was removed using an sms code that was sent to your phone. Obviously you didn't receive it. I'm not sure if I can guarantee that they didn't intercept that sms somehow but based on my mobile account the text message never occurred. I'm not sure if it didn't appear in my text history because it was intercepted or because there was no text. Can anyone with more knowledge than me verify whether or not our phone numbers are safe?

5 years ago
Permalink

Comment has been collapsed.

Deleted

This comment was deleted 5 years ago.

5 years ago
Permalink

Comment has been collapsed.

Based on the order in which I received the emails about my account I don't believe so. It looks like it has to be remove authenticator and then add new phone.

5 years ago
Permalink

Comment has been collapsed.

Deleted

This comment was deleted 5 years ago.

5 years ago
Permalink

Comment has been collapsed.

That is right, I just moved to another phone and it was a pain in the butt... ^^

5 years ago
Permalink

Comment has been collapsed.

Du Schlumpf bist auch täglich aktiv. Erwischt.
Ich könnte deinem Hintern ja helfen. Bißchen außen zum glühen bringen dann merkst du drinnen keinen Schmerz mehr. Nur weil du es bist biete ich so ne helfende Hand an :-P kichernd

5 years ago
Permalink

Comment has been collapsed.

Just fyi, your account is already sending out messages advertising scam sites. I've got three messages from it already.

5 years ago
Permalink

Comment has been collapsed.

https://www.scamadviser.com/ to check unknown sites could be useful

5 years ago
Permalink

Comment has been collapsed.

you received 6 message with 1 rusky site what is created 1 day ago.
And now you already posted with bot to all your friends same website
Same problem😐

5 years ago
Permalink

Comment has been collapsed.

email pass changed and mobile removed😐

5 years ago
Permalink

Comment has been collapsed.

Did you use same password for email and Steam login?

5 years ago
Permalink

Comment has been collapsed.

no, your Mr. Putin?😆

5 years ago
Permalink

Comment has been collapsed.

email adress changed
I loged with steam and after 2 sec disconected from all and all chenged

5 years ago
Permalink

Comment has been collapsed.

What?

5 years ago
Permalink

Comment has been collapsed.

Our dear friends RevvedUp & BreadMan were hacked :((

All our hopes & wishes go towards you guys ! :D i hope you guys get it on time before those darn hackers indian/ruski/asian hackers get to do more shady stuff with ur ids or like get u VAC ban in CS:GO etc :( ufff...
But how is it possible , they can bypass SteamGuard mobile auth etc?? :( anyone has more insight on the matter?

Btw bro i had that message from you like 3 times but u offline now
and from bread like 5 times already xD i won't ignore you guys but oh well,gotta be careful to not click those ^_^

5 years ago
Permalink

Comment has been collapsed.

i've already lost 40+ friends :(

5 years ago
Permalink

Comment has been collapsed.

:(

5 years ago
Permalink

Comment has been collapsed.

sorry to say it so clear but they don't get hacked.
They posted at this shady site there login + password because they thought they are at the steampage and haven't checked the https:www..... adress.
Count 1 and 1 together and you know why they got hijacked.

I wish them the best for there accounts but this common way haven't anything to do with hacking peoples accounts.

5 years ago
Permalink

Comment has been collapsed.

i always use STEAM IN-Game browser for loging in on sites that might require my steam, BECAUSE xD Steam is ALREADY , ALWAYS Logged in , in the in-game browser :D ( very rarely if internet disconects etc or u switch ip / switch internet like from wifi/fibre cable to internet from mobile phone etc ,has to re-login and it does automatically in 1-2 seconds :D
I always use Steam i n-game browser for steamgifts/ sites that need my steam login , because of Security + Can't be arsed to login in firefox :D.
And ppl should always login using Windows On-Screen Keyboard, if paranoid vs keyloggers :P
Like Damon Salvatore said , " paranoid? let's call it healthy skepticism " :D , you can try use On-SCreen Keyboard , increase it's window size + move it on your screen a bit,only then type ur id/pw :D , u can even add a few extras, then click with mouse & delete wrong characters purposefully placed :D

5 years ago
Permalink

Comment has been collapsed.

Nah i don't use onscreen keyboard, type wrong and delete letters. Thats a bit too much.

Use a Antivir Program prefered a payed version from the original source, Update your system and system components, look 2 or 3 times at sited that sounds "too good to be true" and don't trust steam "friends" blindly or type your login and password, without checking and sleepy, at some random sites.

It's shocking how much don't look on the most basic security stuff.
Easy to see by the fact how much people are now hijacked from this one site and in which time.

5 years ago
Permalink

Comment has been collapsed.

i agree :D i dont always do that but i very rarely need to login somewhere :P

++ As i said,safest is to use IN-Game browser ;D not only saves u the login or having saved info on browser mozilla firefox et c
but also we are ALWAYS Logged in, on In-Game Browser, that's how you can tell fake sites from true ones :D
steam will never ask u to login ,when u use in-game steam browser :D

5 years ago
Permalink

Comment has been collapsed.

Yep I got messaged by RevvedUp multiple times in a row, all linking to the scam site someone posted above. My account is fine thankfully since I didn't log in (sites claims were way too suspicious).

5 years ago
Permalink

Comment has been collapsed.

Use a password manager and you'll avoid these kind of problems (the password manager won't auto-fill your login info if the URL doesn't match), also it'll also make it easy to have a different password (and more secure ones) for each site, increasing your security even more.

5 years ago
Permalink

Comment has been collapsed.

5 years ago*
Permalink

Comment has been collapsed.

thanks for that , done it b'cause few of my friends seems to be "infected"

5 years ago
Permalink

Comment has been collapsed.

You are online on steam, or Putin?😐

5 years ago
Permalink

Comment has been collapsed.

no thats still them. still haven't even heard back from steam yet.

5 years ago
Permalink

Comment has been collapsed.

That sucks. :( Just got hit by that bot from your account had to unfriend you. Reported it, hopefully you get it back soon. :)

5 years ago
Permalink

Comment has been collapsed.

The link is rated 6% safe when I looked it up lol.

5 years ago
Permalink

Comment has been collapsed.

Yeah i didn't think twice about it since I know the guy and all. Or rather didn't realize he was compromised. Sure didn't help that I was exhausted from a sleepless night when I saw the message. Only reason I didn't second guess the site was cuz when the game I "won" rolled it was something I and lots of people already owned so I figured it was just another giveaway site.

5 years ago
Permalink

Comment has been collapsed.

Create ticket, and wait! https://help.steampowered.com/en/wizard/HelpWithAccountStolen
Steam are responsibles for this security bug hack
I created ticket 10 hour ago and nothing

5 years ago
Permalink

Comment has been collapsed.

Deleted

This comment was deleted 4 years ago.

5 years ago
Permalink

Comment has been collapsed.

after this, just dont forget NOT to click some dubious link (usually you can hover it a read it, for precaution)
also make use of 2FA, that's a must

5 years ago
Permalink

Comment has been collapsed.

did you all try to log in on the site and write your login/password or just click everywhere without any information from you?

5 years ago
Permalink

Comment has been collapsed.

I wish people would stop saying that they "got hacked" because no, they didn't get hacked, they mindlessly entered their login information in a malicious site and basically given the "hackers" everything they need to access and take control of their account, nobody had to work for it to get their account info because they handed it to them themselves.
I will never understand why it seems so hard to double check links via Google before mindlessly clicking on them let alone putting in your details. Everyone who falls for stuff like this is so blinded by the idea that they're getting something for free that they don't even take a second to think whether or not it might be fake. I mean, if it was the early years of the internet I'd get it but it's 2019 and sadly, people still fall for this stuff and then wonder why their accounts get compromised.

5 years ago
Permalink

Comment has been collapsed.

Dude. I was tired. Didn't know my friend got his account hacked and that it wasn't him who messaged me. I made a mistake. Really don't need you being an ass right now k.

5 years ago
Permalink

Comment has been collapsed.

Call it whatever you want but I stand by my opinion. =)
Lucky for you, your friend, and everyone else who fell for scams like this, Steam seems to be pretty good when it comes to recovering people's accounts, even if it might take a bit sometimes, so you'll probably have your account back soon if you haven't yet. Lesson learned I guess.

5 years ago
Permalink

Comment has been collapsed.

Exactly. I am willing to admit the mistake was mine. Just took it to offense they way you worded that (and im a bit on edge after all this, im sure you realize that). Lesson learned indeed. Got too used to seeing free game sites with all of the stuff that gets posted in the reddit and discussions here I didn't think twice. Hopefully a week without my steam games is all it will cost me :)

5 years ago
Permalink

Comment has been collapsed.

No one is hacked, they were phished.

5 years ago
Permalink

Comment has been collapsed.

When I made the thread I wasn't really thinking about proper grammar but fair enuf. Guess Hijacked would have been better.

5 years ago
Permalink

Comment has been collapsed.

Resolved to me, now its hard to change language from russian😆
And say sorry for some friends, all hacked accounts its spammed with this link to friends😵

5 years ago
Permalink

Comment has been collapsed.

Glad to see you back!

I figured you had gotten it resolved since you were no longer sending the messages. Alas, 3 more friends are still sending the messages, and I got one from another friend that must have just gotten hijacked (so four still-compromised friends). :(

5 years ago
Permalink

Comment has been collapsed.

Thanks,
Steam maybe need to change this low security😃

5 years ago
Permalink

Comment has been collapsed.

2FA will help prevent this correct? I was curious enough to click the link, but the site seemed super fake (especially since the language was locked in Russian despite being in English) and didn’t put my info in there, am I safe?
Edit: oh, sounds like op had 2FA as well but it got disabled?

5 years ago*
Permalink

Comment has been collapsed.

Deleted

This comment was deleted 5 years ago.

5 years ago
Permalink

Comment has been collapsed.

Ah, okay. I was logged in in another tab, so I figured if it were real, I would already be logged in. Then I looked at the URL, which was just blank for me, and then noticed the “language” option that couldn’t be changed...

5 years ago
Permalink

Comment has been collapsed.

Definitely spreading, two guys on my friend list are also spreading the link.

5 years ago
Permalink

Comment has been collapsed.

Closed 5 years ago by MSKOTOR.