Alle diskussioner > Steam-fora > Steam Discussions > Trådoplysninger
Nightshaid 23. sep. 2019 kl. 17:42
Steam account stolen?
So, this evening I came home and lo and behold my son was nearly hysterical because someone that he's nebulously friends with online 'accidentally' reported him for duping. What follows are a series of personal messages from both that player and someone claiming to be John Houston (SR) from Valve support, threatening to delete the account within minutes, demanding screenshots in chat (which I gave), that I add a phone # to the account (which was immediately removed), and that I get into discord (at which point I stopped). Can we say too many flags?

If this is a steal, then that's one thing, but if this really was a Valve moderator named John Houston (SR) that changed the email address associated, well...from a parent who's spent thousands on your company's games...you can use some customer service skills. Now get my son's account back on, please.
Sidst redigeret af Nightshaid; 23. sep. 2019 kl. 17:51
< >
Viser 1-15 af 35 kommentarer
FFL2and3rocks 23. sep. 2019 kl. 17:46 
It was an impersonator. Valve staff will never contact anyone that way.
#1
Nightshaid 23. sep. 2019 kl. 17:48 
All I know is that name links within Steam to what appears to be a moderator account. Search him as I typed.
Sidst redigeret af Nightshaid; 23. sep. 2019 kl. 17:48
#2
RcsPcsN1 23. sep. 2019 kl. 17:49 
Change your passwords

Revoke your API

Scan your device for malware

Try to find a better, more detailed, answer
#3
Nightshaid 23. sep. 2019 kl. 17:52 
Oprindeligt skrevet af ReecesPiecesN1:
Change your passwords

Revoke your API

Scan your device for malware

Try to find a better, more detailed, answer


I'm a bit past the basics, but thanks. In addition, the account is unavailable to affect a password change at the moment.
#4
BattleChaing 23. sep. 2019 kl. 18:03 
First, make a report to the suport Steam
#5
Nightshaid 23. sep. 2019 kl. 18:11 
Oprindeligt skrevet af BattleChaing:
First, make a report to the suport Steam
yes, done, and always good advice of course. I was reporting it during the incident, just in case.

understand this isn't my first rodeo. I stalled this chat trying to verify but valve is ♥♥♥♥ for communication here. this guy was able to retrieve a phone number I'd just added to the account at his demand so it looked extremely possible. It's hard to sort all of this out walking in the door...
Sidst redigeret af Nightshaid; 23. sep. 2019 kl. 18:13
#6
Wolverine 23. sep. 2019 kl. 18:41 
as posted by others, here's what you should do:
scan for malware https://www.malwarebytes.com/
deauthorize all devices https://store.steampowered.com/twofactor/manage
revoke any api key https://gtm.steamproxy.vip/dev/apikey
change your password on a clean computer.
generate new back up codes https://store.steampowered.com/twofactor/manage
contact Steam Support for more help https://support.steampowered.com/
unfriend/report/block the account(s) that are involved in the scam.

you should also tell your son to stay away from any "free games here!" web pages or links in the future, and get some decent securitiy software for your computers while you're at it.
Sidst redigeret af Wolverine; 23. sep. 2019 kl. 18:45
#7
Nightshaid 23. sep. 2019 kl. 19:41 
Oprindeligt skrevet af Logan:
as posted by others, here's what you should do:
scan for malware https://www.malwarebytes.com/
deauthorize all devices https://store.steampowered.com/twofactor/manage
revoke any api key https://gtm.steamproxy.vip/dev/apikey
change your password on a clean computer.
generate new back up codes https://store.steampowered.com/twofactor/manage
contact Steam Support for more help https://support.steampowered.com/
unfriend/report/block the account(s) that are involved in the scam.

you should also tell your son to stay away from any "free games here!" web pages or links in the future, and get some decent securitiy software for your computers while you're at it.


While I do thank you for your response, the criticizing tone does little to help, and down this list we've hit the pat actions by now. I work in IT, and this PC is protected and scans clean with what you've suggested and more. This is purely an security account issue.
Sidst redigeret af Nightshaid; 23. sep. 2019 kl. 19:42
#8
Zekiran 23. sep. 2019 kl. 20:01 
It's very much a 'your kid did something resoundingly wrong' issue, nothing more and nothing less. If you work in IT, you should be ideal to sit him down and explain why he's not going to be using his accounts in that way in the future, right?


Because most of the time, people claiming "to be the dad" are usually not even that, around here.
#9
Muppet among Puppets 23. sep. 2019 kl. 20:16 
Oprindeligt skrevet af Nightshaid:
I work in IT, and this PC is protected and scans clean with what you've suggested and more. This is purely an security account issue.
Someone does not need to work in IT to have a son getting in this trouble.
#10
Frostbringer 23. sep. 2019 kl. 20:25 
Oprindeligt skrevet af Nightshaid:
Oprindeligt skrevet af Logan:
as posted by others, here's what you should do:
scan for malware https://www.malwarebytes.com/
deauthorize all devices https://store.steampowered.com/twofactor/manage
revoke any api key https://gtm.steamproxy.vip/dev/apikey
change your password on a clean computer.
generate new back up codes https://store.steampowered.com/twofactor/manage
contact Steam Support for more help https://support.steampowered.com/
unfriend/report/block the account(s) that are involved in the scam.

you should also tell your son to stay away from any "free games here!" web pages or links in the future, and get some decent securitiy software for your computers while you're at it.


While I do thank you for your response, the criticizing tone does little to help, and down this list we've hit the pat actions by now. I work in IT, and this PC is protected and scans clean with what you've suggested and more. This is purely an security account issue.

The best virus and malware protection in the world doesn’t prevent phishing/social engineering stealing enough info to take over an account.

Relying solely on software to protect you is not the right choice for anyone to take.

Are you sure your son didn’t give the fake Valve employee enough info to let the account be compromised, in an attempt to fix it before you got home?
#11
Nightshaid 23. sep. 2019 kl. 21:00 
Again, thanks for the responses. The last number have had more substance than the initial few attempts. Yes, my son screwed up somewhere, but someone was able to present an account within the steam client which appeared legitimate, with a corresponding link. Not only that, they were able to return account details before the conversation had gone far, and he doesn’t know enough to get them that far - its what they were phishing for when I got home. I began a support ticket during the encounter, but the surprise and urgency with which I was hit here had me slow to get aggressive myself. No doubt the intent.
Sidst redigeret af Nightshaid; 23. sep. 2019 kl. 21:01
#12
Muppet among Puppets 23. sep. 2019 kl. 21:05 
They play mindgames. While having access to the account and chat.

And then they asked you to present screenshots about how you add a phone number.
Having some bits getting more bits. The principle of social engineering.
#13
Brian9824 24. sep. 2019 kl. 5:38 
Oprindeligt skrevet af Nightshaid:
Again, thanks for the responses. The last number have had more substance than the initial few attempts. Yes, my son screwed up somewhere, but someone was able to present an account within the steam client which appeared legitimate, with a corresponding link. Not only that, they were able to return account details before the conversation had gone far, and he doesn’t know enough to get them that far - its what they were phishing for when I got home. I began a support ticket during the encounter, but the surprise and urgency with which I was hit here had me slow to get aggressive myself. No doubt the intent.

Your son compromised his account and gave access to a third party who was able to use that access to try to get more access. Anyone can make a profile page and make it say whatever they want, send photo shopped screenshots, etc.

If you didn't follow the steps posted in that order then the account could still be compromised and the intruder could still have access to the API.
#14
Wolverine 24. sep. 2019 kl. 11:53 
Oprindeligt skrevet af Nightshaid:
Oprindeligt skrevet af Logan:
as posted by others, here's what you should do:
scan for malware https://www.malwarebytes.com/
deauthorize all devices https://store.steampowered.com/twofactor/manage
revoke any api key https://gtm.steamproxy.vip/dev/apikey
change your password on a clean computer.
generate new back up codes https://store.steampowered.com/twofactor/manage
contact Steam Support for more help https://support.steampowered.com/
unfriend/report/block the account(s) that are involved in the scam.

you should also tell your son to stay away from any "free games here!" web pages or links in the future, and get some decent securitiy software for your computers while you're at it.

While I do thank you for your response, the criticizing tone does little to help, and down this list we've hit the pat actions by now. I work in IT, and this PC is protected and scans clean with what you've suggested and more. This is purely an security account issue.

Well, nothing personal and it wasn't mend to offend in any way, it's just that most of "us" reading these forums see posts like this every day and just try to help as direct and plain as possible.

And again, no offense, but perhaps now is a good time to sit down with your kid(s) and explain to them how Steam support (or the world in general, so to speak...) really opperates, and how to handle situations like these when you're not at home?

It can't hurt to let them know what they have to do in case of an emergency.

Anyway, good luck on clearing this up and take care.
Sidst redigeret af Wolverine; 24. sep. 2019 kl. 17:22
#15
< >
Viser 1-15 af 35 kommentarer
Per side: 1530 50

Alle diskussioner > Steam-fora > Steam Discussions > Trådoplysninger
Dato opslået: 23. sep. 2019 kl. 17:42
Indlæg: 34
Start en ny diskussion

Diskussionsregler og retningslinjer