Attempted Steam account hyjacking at tf2outpost

A forum dedicated to Team Fortress 2
Post Reply
black_and_blue
Server Admin
Server Admin
User avatar
Posts: 2617
Joined: Sun Apr 20, 2008 5:28 pm

Games Played

Ville Awards

black_and_blue’s avatar
Loading…

Attempted Steam account hyjacking at tf2outpost

Post by black_and_blue » Mon Mar 10, 2014 2:46 pm

While I think most Villuns are probably vigilant enough that they wouldn't fall for this, I thought I'd better post this anyway, because I've seen attempts to hijack my Steam account from no fewer than three different Steam accounts. All of these happened immediately after I bumped my trades at tf2outpost.com.

It's not the first time I've seen an attempt to hijack my Steam account, but it is the first time I've seen what appears to be an automated hijacking attempt every time I bump a trade request.

Here's what happened.
1. I went to tf2outpost.com to bump my trade offers.
2. Shortly after bumping my trades, I received a friend request from •♠•Sir Bastard•♠•. This is how trades are typically initiated on tf2outpost.com.
3. I received the following Steam message: "•♠•Sir Bastard•♠•: Hey! I cant add u from my main acc - steam laggs, i have really good offer http://steamccmrnunity.com/profile/91253794705953793/ add me please. thanks!"

The message sometimes came from a different account, and sometimes had different contents.

Note, in the above URL, that the url is spelled steamccmrnunity.com. If one goes to the site, it is a spoofed version of a Steam Profile with an "Add Friend" link. If you press that link, it gives you a Steam logon page. Presumably, if you actually go through with the logon, they steal your password and hijack your profile.

Plas
Server Admin
Server Admin
User avatar
Posts: 845
Joined: Sun Apr 20, 2008 1:53 am
Location: California

Ville Awards

<eVa>Plas’s avatar
Loading…

Re: Attempted Steam account hyjacking at tf2outpost

Post by Plas » Mon Mar 10, 2014 2:51 pm

Tricky stuff, I imagine they get a good percentage of people with it. Thanks for the heads up black & blue.

M's
Server Admin
Server Admin
Posts: 7550
Joined: Fri May 25, 2007 6:09 am
Location: Vilonia, Arkansas

Games Played

Ville Awards

<eVa> M's’s avatar
Offline

Re: Attempted Steam account hyjacking at tf2outpost

Post by M's » Mon Mar 10, 2014 3:02 pm

Could we get this posted on the main portal page.
Plus it's another reason to verify the correct address you want to be at.

NerevarineKing
Server Admin
Server Admin
User avatar
Posts: 1926
Joined: Sun Oct 23, 2011 4:39 pm
Location: Oklahoma

Games Played

Ville Awards

NerevarineKing’s avatar
Loading…

Re: Attempted Steam account hyjacking at tf2outpost

Post by NerevarineKing » Mon Mar 10, 2014 3:37 pm

Chrome tells me it's a phishing site whenever I click the link. But yes, always be careful with your login information.
Image
Warpath Cup '12- [ICU] Inner Children Unleashed (Champions!)
Villympics '12- [USAHB] USA Handbrake
The Ville Cup '12- [SOLTAN] Solis Tanquam
Warpath Loves Dustbowl '13- \SOBAD/
The Ville Cup '14- GCI| Guild of Calamitous Intent

The Domer
Server Admin
Server Admin
User avatar
Posts: 2884
Joined: Mon Feb 01, 2010 10:09 pm
Location: Ontario

Games Played

Ville Awards

Domer’s avatar
Loading…

Re: Attempted Steam account hyjacking at tf2outpost

Post by The Domer » Mon Mar 10, 2014 4:05 pm

Remember to look for the https on websites that want passwords and such.

Flash
Site Admin
Site Admin
User avatar
Posts: 6356
Joined: Sun Apr 18, 2010 12:01 pm
Location: Houston, TX
Minecraft name: FlashTVR
Contact:

Games Played

Ville Awards

Flash.TVR’s avatar
Offline

Re: Attempted Steam account hyjacking at tf2outpost

Post by Flash » Mon Mar 10, 2014 4:45 pm

Thanks for the warning B&B. I bumped this to the top of the forum and we'll leave it there for a while to help spread the word.

Larry
Villun
Villun
Posts: 1471
Joined: Thu Jul 14, 2011 12:48 pm
Location: Phoenix

Games Played

Ville Awards

Re: Attempted Steam account hyjacking at tf2outpost

Post by Larry » Mon Mar 10, 2014 5:13 pm

When I had some of my more pricey stuff on outpost, I would get 3 or 4 of these daily. Sometimes back to back. Before I accept a request now I usually just check out their profile. If they are a phisher, then they will probably have some comments on their profile about it on it. I'm 90% sure they are bots, so not much else to do but block them. This is the first time I've actually blocked somebody, but after they try and add me 3 times, I'm gonna block them.
Image
Thanks to Seagreens for the spiffy banner!
VIEW CONTENT:
RIP Mr. Laptop 5/21/13
USAHB-Team Hand Brake 2012 Villy-Stuff
#HL3 TVC '13
FAIL Warpath Cup 2012-Proud to FAIL
Heck's Kitchen 2011

TheCarpe
Server Admin
Server Admin
User avatar
Posts: 9717
Joined: Sun Nov 04, 2007 11:32 pm
Location: Inside a refrigerator in Guatemala

Games Played

Ville Awards

TheCarpe’s avatar
Loading…

Re: Attempted Steam account hyjacking at tf2outpost

Post by TheCarpe » Mon Mar 10, 2014 7:44 pm

We already have a post about this kind of thing, it's the oldest scam in the book. Just like antivirus, common sense is the best account security.

http://www.theville.org/forums/viewtopi ... =7&t=11981
Image
Heck's Kitchen - TVC'08 & '11 ** The Axecutioners - TVC'09 ** Hale's Angels - TVC'10 ** CCCP - TVC'12 ** Ville Cuppin' Cakes - TVC'13 ** TheCarpetbaggers - TVC'14 CHAMPIONS

Stevo
Everlasting Villun
Everlasting Villun
User avatar
Posts: 8753
Joined: Sun Oct 22, 2006 10:01 pm
Location: Orange County, CA
Minecraft name: StevoTVR
Uplay name: StevoTVR
Contact:

Games Played

Ville Awards

StevoTVR’s avatar
Loading…

Re: Attempted Steam account hyjacking at tf2outpost

Post by Stevo » Mon Mar 10, 2014 8:29 pm


Earthworm James
Villun
Villun
Posts: 797
Joined: Sat Aug 15, 2009 10:57 am

Games Played

Ville Awards

MISKA’s avatar
Loading…

Re: Attempted Steam account hyjacking at tf2outpost

Post by Earthworm James » Mon Mar 10, 2014 9:04 pm

People are also doing this now with high price items on the steam community market. Been getting all sorts of add's about my StatTrak AK-47.
Image

black_and_blue
Server Admin
Server Admin
User avatar
Posts: 2617
Joined: Sun Apr 20, 2008 5:28 pm

Games Played

Ville Awards

black_and_blue’s avatar
Loading…

Re: Attempted Steam account hyjacking at tf2outpost

Post by black_and_blue » Mon Mar 10, 2014 10:47 pm

6Larry9 wrote:When I had some of my more pricey stuff on outpost, I would get 3 or 4 of these daily.
Interesting, I've been using outpost for quite some time now (more than a year, anyway), and this is the first time I've received any type of clearly automated phishing that was directly related to my activities on outpost. Although I wouldn't consider any of the items I have listed on it, either now or in the past, to be particularly high value.

Were the ones you received obviously automated?

Larry
Villun
Villun
Posts: 1471
Joined: Thu Jul 14, 2011 12:48 pm
Location: Phoenix

Games Played

Ville Awards

Re: Attempted Steam account hyjacking at tf2outpost

Post by Larry » Tue Mar 11, 2014 7:37 am

Yeah, I forgot to block one a couple times and they would still send me the whole nine yards. A couple of times I'd get 2 or 3 request back to back with them all sending the exact same link, some of them multiple times over a couple seconds. A lot of them that don't have private profiles also have comments saying stuff like "Phisher" and the like. If you really wanted to get people, wouldn't you remove those?
Image
Thanks to Seagreens for the spiffy banner!
VIEW CONTENT:
RIP Mr. Laptop 5/21/13
USAHB-Team Hand Brake 2012 Villy-Stuff
#HL3 TVC '13
FAIL Warpath Cup 2012-Proud to FAIL
Heck's Kitchen 2011

Flyte
Villun
Villun
User avatar
Posts: 103
Joined: Sun Feb 02, 2014 4:19 pm
Contact:

Games Played

Ville Awards

flyte’s avatar
Loading…

Re: Attempted Steam account hyjacking at tf2outpost

Post by Flyte » Thu Jun 26, 2014 6:20 pm

https://support.google.com/chrome/answer/99020?hl=en

If you use chrome they have a phishing link warning. also theres a phishing link detector extension installed in my browser, but i forgot what its called

Knowing
Villun
Villun
User avatar
Posts: 152
Joined: Sun May 05, 2013 4:44 pm
Location: You read this for nothing.

Games Played

Ville Awards

0x1ch’s avatar
Loading…

Re: Attempted Steam account hyjacking at tf2outpost

Post by Knowing » Thu Jun 26, 2014 11:22 pm

This just happened to me today...

I feel like phishing is getting out of hand.
The only difference between me and a madman is that I'm not mad.
- Salvador Dali (1904-1989)

Image

Post Reply

Who is online

Users browsing this forum: No registered users and 15 guests