Steam Account Hijacked :(

Tombo · 14 May 2013 at 13:33

You were made to feel you were in the wrong by being made to provide sufficient proof that you owned the account?

gareth170 · 14 May 2013 at 14:02

Kyo said:
I have to manually insert my password every login. Same with personal details as well.

surely that's not safer because of key loggers malware etc. out there?

Kyo · 14 May 2013 at 14:15

gareth170 said:
surely that's not safer because of key loggers malware etc. out there?

Well it may not be much but it is certainly safer because i am not caching my credentials anywhere.

As for Key logger, i dont think there much defense once the logger is active on a client. However if you know what your doing,, it quite easy to check if there is anything harmful/malicious to your system. ie hijackthis, firewall activity, malware scanner etc comes to mind as well as other useful tools.

divinebeetle · 14 May 2013 at 19:27

divinebeetle said:
Sounds like the googlemail 2 step verification

Does seem a better system

Sounds like using this on any email account linked with steam is a good way forward, as email sounds like the weak link in the system?

rhysduck · 14 May 2013 at 20:16

Kyo said:
As for Key logger, i dont think there much defense once the logger is active on a client. However if you know what your doing,, it quite easy to check if there is anything harmful/malicious to your system. ie hijackthis, firewall activity, malware scanner etc comes to mind as well as other useful tools.

Aside from using the inbuilt keyboard to enter your password?

Can that be detected?

caff · 14 May 2013 at 20:27

Just had an e-mail from Steamguard saying someone's tried to access my account from another PC - password changed promptly...!

Thankfully I had this setup.

gareth170 · 14 May 2013 at 21:26

rhysduck said:
Aside from using the inbuilt keyboard to enter your password?

Can that be detected?

i thought using a on screen keyboard to enter passwords is safer?

gareth170 · 14 May 2013 at 21:35

anyone used KeyScrambler Personal??

Kyo · 14 May 2013 at 21:35

gareth170 said:
i thought using a on screen keyboard to enter passwords is safer?

I didnt know there was a virtual keypad to login into steam so not entirely sure?, at first glance there should be no difference if there is a legitimate way in steam as both physical and virtual are just an input interface?

gareth170 · 14 May 2013 at 21:43

Kyo said:
I didnt know there was a virtual keypad to login into steam so not entirely sure?, at first glance there should be no difference if there is a legitimate way in steam as both physical and virtual are just an input interface?

i mean a virtual keyboard like MS one, click-n-type (which i use), KIS virtual keyboard

rhysduck · 15 May 2013 at 09:15

BOOM!

Sorted, Steam confirmed that my account was indeed hijacked - profile name when i logged back in was effectjeke ... guy is member of some Russian CS GO groups...

Anyway, all sorted thankfully and Steam even gave me 2 free games!

Edit: Funnily though, there is NO way that i can that I can re-enable Steam Guard.

Kyo · 15 May 2013 at 10:00

Congrazt, nice to see you were sorted. It most likely nothing u could have done about it.

What new games did they gift u ?

varkanoid · 15 May 2013 at 10:49

rhysduck said:
BOOM!

Sorted, Steam confirmed that my account was indeed hijacked......

Congrazt, nice to see you were sorted. It most likely nothing u could have done about it.

Still quite concerning that this can happen.

KIA · 15 May 2013 at 11:19

gareth170 said:
i thought using a on screen keyboard to enter passwords is safer?

Not really. Most malware will screengrab as well as key log.

Moothead2 · 15 May 2013 at 14:15

Psycho Sonny said:
so from now on, after i redeem a code, i simply burn them. valve are idiots tbh.

Surely it's just easier to keep the manuals/cut out the codes, put them in a plastic wallet and keep them in a drawer somewhere? That way it takes up barely any space, no-one should be able to get to them and you have them for whenever Steam asks you for them.

rhysduck · 15 May 2013 at 16:17

Sim City and Civ ... both of which I wanted to play so happy days tbh.

Teknobry · 15 May 2013 at 17:54

Why can't you enable steamguard?

kmetek · 15 May 2013 at 18:02

so if i have steamguard email same as my login email, should i change my steamguard email?

Name · 15 May 2013 at 18:12

your steamguard e-mail IS your steam e-mail. It is for me at least.

You only have 1 e-mail account registered to your steam account.

The important thing is to have your e-mail password totally different to your steam login password.

If your steam password is discovered your account should be fine since they will not be able to get hold of the 4 digit key sent to your e-mail.

Semiskimmed · 15 May 2013 at 19:54

Glad you got it sorted but its one of the strangest things ive heard about steam in all my time using it!
How on earth did your thrown out cd keys end up in russia?
It still baffles me that its just a simple case of showing a scanned photo of a serial key to claim accounts, people should stop buying steam codes from people they dont know as if the seller simply provides a scan of the kry they nab your account!