Steam account security

Hiijinx · 19 Nov 2016 at 13:02

I have been plagued with my account being "accessed from a new computer" over the last year and think I have finally tied it to the "remember me" option on the client login.

I have recently switched to a very long, encrypted random password generator and has since been secure, until I used the "remember me" option. (The password is auto typed so eliminates keyloggers, is a clean install too).

Luckily I have steam guard and different passwords for email but it's still a right pita.

Question is - why would the "remember me" option make it accessible, is this a client side breach? Never really known how these things work.

Jono8 · 19 Nov 2016 at 13:13

Never had a problem myself and have the remember me option ticked all the time.

Efour · 19 Nov 2016 at 13:40

I've had steam from day 1 and never had 1 issue with security.
I lost a SOE account once by a key logger...I think.

I would be far more concerned with local security more than their end.

It's cliché but are you certain your network is safe? I've had nasties on my machine in the past that I have foolishly thought I'd got rid of with antivirus products.

Do you have a high profile account? Multiple other accounts using same registered mail?

I thought remember me was a local file setting.... ???

mysticsniper · 19 Nov 2016 at 15:39

Why don't you use the Steam Guard (2FA), and de-authorise all computers except the one you normally use?!?

Hiijinx · 5 Dec 2016 at 16:59

Getting beyond a joke now ...

I am having to change my password every 2-5 days even with a password deemed complex enough for "trillions of years" - one I do not even type and is scambled with anti keylogger software.

Have downloaded just about every AV/malware/spyware/keylogger scanner I can find and they all come back with nothing.

No other devices authorized on my account and is set to private. I use the same email address everywhere but don't see why that would matter.
Out of all this trouble, if it was a trojan/keylogger which somehow evaded all the antivirus aswell as managing to read an autotyped, scambled password - why is it ONLY my steam which is being targeted? Why not my bank details, email, forums etc.

Waiting on steam support again but am not holding my breath for them.
Thank god for steamguard ....

Don't suppose anyone can think of a different idea?

meandu229 · 5 Dec 2016 at 17:04

Hiijinx said:
Getting beyond a joke now ...

I am having to change my password every 2-5 days even with a password deemed complex enough for "trillions of years" - one I do not even type and is scambled with anti keylogger software.

Have downloaded just about every AV/malware/spyware/keylogger scanner I can find and they all come back with nothing.

No other devices authorized on my account and is set to private. I use the same email address everywhere but don't see why that would matter.
Out of all this trouble, if it was a trojan/keylogger which somehow evaded all the antivirus aswell as managing to read an autotyped, scambled password - why is it ONLY my steam which is being targeted? Why not my bank details, email, forums etc.

Waiting on steam support again but am not holding my breath for them.
Thank god for steamguard ....

Don't suppose anyone can think of a different idea?

Do you use a VPN or anything? Check your dns settings etc.
Small chance you could be getting redirected to a fake steam site/service if they managed to get certificates on your PC it would possibly show as legit.

Hiijinx · 5 Dec 2016 at 17:18

I do not use a VPN anymore but checked my DNS settings and it was on my ISP's official one. Have changed that to another just to see if that makes any difference though.

Hiijinx · 11 Dec 2016 at 12:22

SOLVED

Problem solved....

I do not know how, or when - but it seems I have 2 separate accounts under the same email. It was not very obvious as I used the same profile name for both!

The "other" account - only has a handful of games on it, but weirdly enough - a mixture of old and new releases. How this happened I have no clue but its sorted now thankfully!

Gimpymoo · 11 Dec 2016 at 13:00

So the problem was, Steam allowed the same address to be used for two seperate accounts?

GDL · 11 Dec 2016 at 16:08

Gimpymoo said:
So the problem was, Steam allowed the same address to be used for two seperate accounts?

You can use the same E-mail for as many Steam accounts as you wish.
The requirement for the account name to be an E-mail address has long since passed.

wnb · 11 Dec 2016 at 16:25

Steam security has always been good for me. I once had my Origin account hacked and lost control of my account for a few days. Thankfully Origin support was good and I got my account back.