Malware Distributed Through Twitch Chat Is Hijacking Steam Accounts 53
An anonymous reader writes If you use Twitch don't click on any suspicious links in the video streaming platform's chat feature. Twitch Support's official Twitter account issued a security warning telling users not to click the "csgoprize" link in chat. According to f-secure, the link leads to a Java program that asks for your name and email. If you provide the info it will install a file on your computer that's able to take out any money you have in your Steam wallet, as well as sell or trade items in your inventory. "This malware, which we call Eskimo, is able to wipe your Steam wallet, armory, and inventory dry," says F-Secure. "It even dumps your items for a discount in the Steam Community Market. Previous variants were selling items with a 12 percent discount, but a recent sample showed that they changed it to 35 percent discount. Perhaps to be able to sell the items faster."
Slashvertisement (Score:2, Funny)
Steam extended summer sale extrazaganza 35% off select games now!
I do not understand (Score:3, Insightful)
If someone wants me to type in my account and then my password I won't
I really won't
Common sense tells me that no one has any right to demand me to type in my account name/number and then my password
That is why I do not understand why there _are_ people who are simply void of any common sense
Ain't there enough stories of scams already? Why can't those people learn _anything_ from the mistakes of others?
Re:I do not understand (Score:5, Informative)
If someone wants me to type in my account and then my password I won't
I really won't
Common sense tells me that no one has any right to demand me to type in my account name/number and then my password
That is why I do not understand why there _are_ people who are simply void of any common sense
Ain't there enough stories of scams already? Why can't those people learn _anything_ from the mistakes of others?
Except in this case it does not. It asks for your name and email. Nowhere does it say anything about a password.
Re: (Score:2)
Re: (Score:2)
Re: (Score:2)
Re: (Score:3, Informative)
If someone wants me to type in my account and then my password I won't
I really won't
Common sense tells me that no one has any right to demand me to type in my account name/number and then my password
That is why I do not understand why there _are_ people who are simply void of any common sense
Ain't there enough stories of scams already? Why can't those people learn _anything_ from the mistakes of others?
No where do they say they are asking for the steam account info. Fake raffle wants a username/email & password to sign up, then it installs a program that access your steam stuff. most people on their home computer either have steam running all the time and are logged in, or auto log in.
I do don't do twitch.tv and I don't bother signing up for online raffles or anything claiming i will win something, because that is stupid.
But yes, giving your account info out is very dumb, but I don't think that i
Re: (Score:3)
Why would it be a raffle or some other semi-sleazy subject?
Asking for a username and email is standard practice for pretty much any kind of website signup.
If I were into gaming enough to watch somebody else play a specific game on Twitch and somebody posted a link to a legit-looking site claiming to provide me a valuable service for that specific game, I might well be fooled.
Re: (Score:2)
Re: (Score:2)
I wouldn't say so much as "devoid of common sense", but rather "trained to ignore warnings"
Microsoft is probably the biggest offender here. In trying to provide better security to the end user, they end up bombarding them with warnings, which mean nothing bad 99% of the time (e.g. IE ssl warnings, UAC warnings, etc). Users start to think nothing of these, so they just start to ignore them.
Not to mention, there's 8 million ways to scam people on steam, most of which don't involve malware. And yes, when tradi
Morons. (Score:1, Insightful)
Several things annoyed me with this.
1) gamers that don't run basic AV
2) gamers that don't run sandboxing software over their browser (Sandboxie for example, shits TRIVIAL to use and is even foolproof!)
3) people DOWNLOADING programs for competitions...
4) actually wanting to play CS Go. The worst sin of them all.
5) Twitch still hasn't word-banned people typing these messages and any variants. It's not like their servers would break, they already have filters in place.
Let them suffer. These are the ki
Re: (Score:1)
"Basic AV" is useless against any determined attacker. Yes, in a few weeks, maybe even in a few days if the AV is really "good", the AV would find the trojan horse that you installed, but the one you installed disabled all defenses and the one you'd get in a few weeks or days is different enough that your AV won't do anything then. People with common sense don't need AV and people without common sense are not helped by AV. I see the remnants of the infection vector all the time: Installers, usually of some
Re: (Score:2, Insightful)
FREE SHIT! CLICK HERE! still works even on gamers.
and the bar for 'gamer' is really really low these days anyway.
Re: (Score:2)
Click where? There's no link! I WANT FREE SHIT!
Re: (Score:2)
1) Not sure what being a gamer has to do with ones computer literacy in this day and age. It's not 1995 anymore. It doesn't take a CS degree to get an online game working.
2) Who the fuck runs sandboxing software on their browser? Essentially no one.
3) It gives the appearance of being a Java browser app. Unfortunately, people are used to sites running annoying unnecessary Java apps to do that do things that don't need a Java app to implement because of lazy/bad developers. Since this app gives the appearance
Re: (Score:2)
Basic AV = not automatically executing stuff.
If you mean something like real-time protection from common AV packages, then those are technically reactive to threats and don't detect new things within the past ~24 hours or so.
Browsers should be self-sandboxing, which has been the case since the start of HTML, until someone foolishly added JavaScr
Re: (Score:1)
2) gamers that don't run sandboxing software over their browser (Sandboxie for example, shits TRIVIAL to use and is even foolproof!)
That is not how Sandboxie works by default. By default, Sandboxie prevents changes to files on the system itself, but allows sandboxed items to read everything. So things running inside the sandbox, including this malware, would be able to do everything the summary describes unhindered. And if you have the sandbox set to delete all its contents on a program closure (like your browser), you would not even know, or even have a trace, of what happened.
I knew it ! They were bots all along. (Score:3)
How to trust a chat where strange black-and-white faces appear randomly ?
And it it wasn't enough, there is even a special emote for FRAUD!, an obvious sign.
Re: (Score:2)
Cool (Score:2)
Time to watch out on Steam for discounts, I guess ...
Thanks for the info!
Re: (Score:2)
Who the heck is crazy enough to have Adobe Reader, Flash, Java and Silverlight on their computer these days?
FTFY
Re: (Score:2)
Anyone playing Minecraft ... :-/
(I refuse to use Java due to far too many security issues.)
Re: (Score:2)
Only if you know where to find the option.
In Firefox Aurora version 34.0a2, I click the three lines button to get a menu, then click on options. None of the listed tabs lead towards disabling plugins, or making them manually activated by clicking.
In general, if you have to look in more than one place to configure your software, it's not trivial even if it's easy.
Re: (Score:2)
Minecraft is the only thing that needs Java.
I'm not going to risk an entire computer for one game.
Besides, I would rather spend time making my own game then playing other people's games. :-)
Reverse the transactions (Score:2)
What platform is this on? (Score:1)
Not that I don't just assume its Windows, as usual, but, it would have been nice to specify that this is only happening to people unfortunate enough to be running Windows. If it was happening to Mac users also, I would bet they'd mention that.
Of course, I'm pretty sure I'm safe on my linux platform.
Re: (Score:2)
Java is pretty platform independent actually
here's an idea (Score:2)
don't ever click on suspicious links ever!
Empty Steam Wallet (Score:1)
Re: (Score:2)
market, wallet, what (Score:1)
I've been using Steam for a while, but I don't know how to look at either of these things. I guess I'll have to poke around when I get home.
I just buy and play games. As far as I'm concerned it's a game launcher.
I remember a lawsuit a while back about being able to resell games, but didn't realize there was a "marketplace" to do that within steam. I knew there were coupons or promo codes, but didn't realize there was a wallet.
So I learned something new about a pi