TheVille

While I think most Villuns are probably vigilant enough that they wouldn't fall for this, I thought I'd better post this anyway, because I've seen attempts to hijack my Steam account from no fewer than three different Steam accounts. All of these happened immediately after I bumped my trades at tf2outpost.com.

It's not the first time I've seen an attempt to hijack my Steam account, but it is the first time I've seen what appears to be an automated hijacking attempt every time I bump a trade request.

Here's what happened.
1. I went to tf2outpost.com to bump my trade offers.
2. Shortly after bumping my trades, I received a friend request from •♠•Sir Bastard•♠•. This is how trades are typically initiated on tf2outpost.com.
3. I received the following Steam message: "•♠•Sir Bastard•♠•: Hey! I cant add u from my main acc - steam laggs, i have really good offer http://steamccmrnunity.com/profile/91253794705953793/ add me please. thanks!"

The message sometimes came from a different account, and sometimes had different contents.

Note, in the above URL, that the url is spelled steamccmrnunity.com. If one goes to the site, it is a spoofed version of a Steam Profile with an "Add Friend" link. If you press that link, it gives you a Steam logon page. Presumably, if you actually go through with the logon, they steal your password and hijack your profile.

Tricky stuff, I imagine they get a good percentage of people with it. Thanks for the heads up black & blue.

Could we get this posted on the main portal page.
Plus it's another reason to verify the correct address you want to be at.

Chrome tells me it's a phishing site whenever I click the link. But yes, always be careful with your login information.

Remember to look for the https on websites that want passwords and such.

Thanks for the warning B&B. I bumped this to the top of the forum and we'll leave it there for a while to help spread the word.

When I had some of my more pricey stuff on outpost, I would get 3 or 4 of these daily. Sometimes back to back. Before I accept a request now I usually just check out their profile. If they are a phisher, then they will probably have some comments on their profile about it on it. I'm 90% sure they are bots, so not much else to do but block them. This is the first time I've actually blocked somebody, but after they try and add me 3 times, I'm gonna block them.

We already have a post about this kind of thing, it's the oldest scam in the book. Just like antivirus, common sense is the best account security.

http://www.theville.org/forums/viewtopi ... =7&t=11981

People are also doing this now with high price items on the steam community market. Been getting all sorts of add's about my StatTrak AK-47.

6Larry9 wrote:When I had some of my more pricey stuff on outpost, I would get 3 or 4 of these daily.

Interesting, I've been using outpost for quite some time now (more than a year, anyway), and this is the first time I've received any type of clearly automated phishing that was directly related to my activities on outpost. Although I wouldn't consider any of the items I have listed on it, either now or in the past, to be particularly high value.

Were the ones you received obviously automated?

Yeah, I forgot to block one a couple times and they would still send me the whole nine yards. A couple of times I'd get 2 or 3 request back to back with them all sending the exact same link, some of them multiple times over a couple seconds. A lot of them that don't have private profiles also have comments saying stuff like "Phisher" and the like. If you really wanted to get people, wouldn't you remove those?

https://support.google.com/chrome/answer/99020?hl=en

If you use chrome they have a phishing link warning. also theres a phishing link detector extension installed in my browser, but i forgot what its called

This just happened to me today...

I feel like phishing is getting out of hand.