Beware when friends invite you to tournaments on Steam – There is nasty fraud behind it

NewsTech
2 Min. Benedikt Schlotmann 1 Comment Bookmark
Beware when friends invite you to tournaments on Steam – There is nasty fraud behind it

On Steam, scammers are currently trying to gain access to Steam accounts with a new trick. To lure users, hackers offer exciting tournaments. However, those who participate will lose access to their account.

Scammers regularly target valuable accounts and profiles. However, a new scam is currently making the rounds. This is reported by the Online magazine PCGamer. Hackers are trying to access your Steam account by using a particularly nasty tactic, directing you to a deceptively real website. A comprehensive analysis of the attacks was launched by the security service Group-IB.

Scammers send nasty invitations to tournaments

How does the trick work? Users receive a direct message on Steam from unknown individuals or friends inviting them to participate in a tournament. The messages vary:

  • A final player is needed for the team in a LoL, CS, Dota 2, or PUBG tournament.
  • They suggest that you should vote for the user’s favorite team.
  • Some request that you purchase discounted tickets for digital sports events.

If you click the link in the message, you will be redirected to a convincingly real tournament platform that officially offers tournaments, merchandise, and other things. Here, you are supposed to enter your Steam login credentials and your two-factor authentication.

However, once you enter your details here, you will receive an error message stating that something must have gone wrong. Now the scammers have access to your Steam account and can change your credentials. You will lose access for a while. This method is known as a “Browser-in-the-Browser” attack.

What happens next? The scammers begin to empty your account. This includes valuable skins, loot boxes, or other digital items that you have on your Steam account.

If you finally regain access to your account, all items and skins will be gone. If you had credit card or other banking details stored, these are likely to have been copied by the scammers as well.

Hackers direct you to a deceptively real website

Why is the tactic so nasty? As soon as you click the link, a popup window opens in Steam, similar to what you experience with credit card institutions or PayPal when you want to pay on Steam. In this popup window, you will see a convincingly real page: it is professionally designed, available in multiple languages, and uses a validity certificate.

The login window for Steam also looks familiar. It features the same login interface that is used officially by Valve.

Have you received such a message already, or do you have friends who have received such messages? Or have you so far been spared? Let us know in the comments!

Hackers regularly target gamers’ digital riches. In one game, scammers made a particularly large haul. It involves half a billion euros:

Hackers steal €550 million from NFT game – Pokémon-like game was unfortunately too successful

Deine Meinung? Diskutiere mit uns!
6
I like it!
0
Kommentieren
This is an AI-powered translation. Some inaccuracies might exist.
Diablo 4 obduzit ist selten titel

A single resource is currently limiting progress in Diablo 4 – Player gives tip on how to get “infinite” amounts of it

Developers of Crimson Desert turn a bug into a feature, let you skate through the air

Titelbild PS5 PlayStation 5 Detail

Players show by example of the PlayStation that gaming is increasingly becoming a luxury hobby

Trucker converts his passenger seat into a gaming station for over 6,000 euros, is so powerful it needs its own generator

Lost Password

Please enter your username or email address. You will receive a link to create a new password via email.