Help, account got compromised and they traded 1835 of my dota items
The Trade was initiated in the middle of the night. I've changed my password, but steamguard didn't work. What can I do?
< >
Showing 1-15 of 16 comments
Clear your computer of malware, change your password. , and learn not to give out your login data in the future.
I dont understand how I would have. I’m an adult and I use my computer for work and only dota after kids are in bed.
Lilim 5 Sep @ 6:45am 
Originally posted by Educational:
Help, account got compromised and they traded 1835 of my dota items
The Trade was initiated in the middle of the night. I've changed my password, but steamguard didn't work. What can I do?

Your account is compromised.

Do not trade until your account is secured.

Take the following steps to secure your account:

1. Scan for malware. If you don't have a malware scanner use https://www.malwarebytes.com/
2. Check that the email and phone number on the Steam account are still yours.
3. Deauthorize all other devices. https://store.steampowered.com/twofactor/manage
4. Change passwords from a clean computer.
5. Generate new backup codes for your Mobile App. https://store.steampowered.com/twofactor/manage
6. Revoke the API key (there should be no key). https://gtm.steamproxy.vip/dev/apikey


Steam does not return inventory items or wallet funds.

Steam Item Restoration Policy

Steam Support does not restore items that have left accounts for any reason, including trades, market transactions, deletions, or gifting.
pckirk 5 Sep @ 6:47am 
Accounts are phished not hacked.

You gave away all your account details.

The account name, the password and the KEY to the door, the Steam Guard Mobile code giving them access to the account.

How? by either logging into a known scam site or any off steam item sell sites, fake steam log-in websites, or by tailored malware on your PC, the vote for my team scam, you have a pending ban scam on Discord, free knife click the link etc.

How does Steam (a program) know it is not you when all the account details are correct? It doesn't, therefore any action taken on your account is seen as you doing said actions.

The alternative is not plausible:

1) Someone would have to "GUESS" your account name from "millions of possible combinations".

2) Next they would have to "GUESS" your password from "millions of possible combinations" and then match it to your account name with "millions of possible combinations".

3) And finally they would have to "GUESS" the Steam Guard Mobile code "which changes every 30 seconds" to match both your account name and password to then have access your account.

--------------------------------------------------------------------------------------------------------------------
Your account was phished / hijacked. Follow steps 1- 8 to secure your account:

1. Scan for malware https://www.malwarebytes.com/

2. Check that the email and phone number on the Steam account are still yours.

3. Deauthorize all other devices https://store.steampowered.com/twofactor/manage

4. Change passwords from a trusted/clean device.

5. Generate new backup codes for your Mobile App https://store.steampowered.com/twofactor/manage

6. Revoke the API key https://gtm.steamproxy.vip/dev/apikey (there should be nothing in the APIKEY)

7. Make sure your steam recovery email account is secure and still accessible.

8. Do a PW reset to recover any steam points spent in last 14 days.

Steam will NOT return lost funds or Items.

If any lost items are from a Trade Protected game, you might be able to recover them. See:
https://help.steampowered.com/en/faqs/view/365F-4BEE-2AE2-7BDD

------------------------------------------------------------------------------------------------------------------------
Because you were phished on your computer. They grabbed the session token from that 30 second 2fa code, along with your login info. that is the only way. with all 3 parts of the key, they could use that at any time to log in as you, since they had the 2fa session token code, steam thinks it is you.

The only way to get all 3 parts of the key is from your computer, you were phished.

https://help.steampowered.com/en/wizard/HelpWithAccount

To begin a account recovery (Lost / Stolen) Follow these steps:

https://gtm.steamproxy.vip/discussions/forum/7/601905007519865294/?tscn=1747857836

-----------------------------------------------------------------------------------------------------------

Things to avoid

-----------------------------------------------------------------------------------------------------------

1. Steam Agent -- no such thing exists. Valve will not contact you outside of a yellow/red notification bar in your Steam client. The only exception is when they are emailing multiple people about a very specific issue. Valve will never contact you through Discord, Twitter, Facebook, Steam Chat, etc.

2. Steam needs to verify that I am the owner of my account. -- When Steam support needs to do that, it will be in direct response to a question you have sent them or as asked for via a red notification in your Steam client, and they will tell you specifically what they need to prove ownership.

3. I asked for a legit proof so I received e-mail with some issue number. -- Steam support will not email you when asking for proof of ownership. This is done entirely via the ticket system.

4. I was told that I need to accept all my cs2 items trade to a temporary account. -- Valve will never ask you to do this. This is a classic trading bot scam. These items are lost forever. Steam support will not return them.

5. I was told my items would return by Thursday, 05.06 -- Again, classic scam. You were given a date so they had more time to get away with it.

6. Yesterday I wrote to Steam support and I see now, that my Question was closed with no answer. -- This is an indicator that the person who scammed has direct access to your account.

7. Any offsite skin / item trade sites.. they are scammers. any non steam website that you use and login with your steam credentials is a bad place...
Thanks pckirk I’m going through these steps- the only thing I think I could have done is a friend messaged me asking if I could be the 5th in a tournament and to register through a website.

So pissed off, a decade of stuff gone
Last edited by Educational; 5 Sep @ 8:08am
Lilim 5 Sep @ 7:14am 
Originally posted by Educational:
Thanks pckirk I’m going through these steps- the only thing I think I could have done is a friend messaged me asking if I could be the 5th in a tournament and to register through a website which was {removed}

Scam: Join a Tournament
Indeed whatever you do don't fall for that scam it makes things much worse Also I would remove that post entirely as it can lead to a community ban .... trust me been there
Last edited by SpeedFreak1972; 5 Sep @ 7:31am
I’ve never heard of the scam before. I believed it because it came from someone who I used to play some leagues with etc. it didn’t seem out of the ordinary at all. Damn, they really cleared me out.
Lilim 5 Sep @ 8:04am 
Originally posted by Educational:
I believed it because it came from someone who I used to play some leagues with...

Their account may have been compromised too.

Can you please edit your post and remove that site's name?
Sure, I removed it - from what I’ve read, The site is a legit site. It must’ve been a compromised link.
It’s wild that you can spend 14 years building a collection and investment and there is no recourse to recover it
pckirk 5 Sep @ 10:37am 
Originally posted by Educational:
It’s wild that you can spend 14 years building a collection and investment and there is no recourse to recover it

Read the steam SSA / TOS agreement that you agreed to when you setup your steam account.

The user is 100% responsible for the security of their steam account, and all actions done via said account are on the account holder.

All steam marketplace transactions are FINAL, Sold by you, or sold by whoever you gave access to your account including hijacked accounts.

Steam already provides more then enough security and protection for people's accounts. What they can not do, is prevent the user from doing bad things and giving away all 3 keys to the door.
Originally posted by Educational:
It’s wild that you can spend 14 years building a collection and investment and there is no recourse to recover it
You can thank people who gamed the system and abused the ♥♥♥♥ out of it for Valve to decide to stop restoring ''stolen'' items.
Originally posted by Educational:
I dont understand how I would have. I’m an adult and I use my computer for work and only dota after kids are in bed.
Don't have kids they probably did it
Dodece 6 Sep @ 6:11pm 
Since nobody else seemingly said as much. I would like to offer you my condolences on the loss.
< >
Showing 1-15 of 16 comments
Per page: 1530 50