Here’s a quick link back to Protecting Against Scams on Discord too. We encourage you to share this article with friends who may not be as informed as you - when everyone’s aware, our communities are safer than ever. Even if you don’t click any of their links, it's best to simply block and report them to us, rather than engage further. I was already feeling like this is likely a scam, before I even saw the sketchy looking links. These are 1 month or 3 month subscriptions, and all you have to do is sign up with your Steam account. The above tactics are some of the ways that scammers may attempt to socially-engineer you into giving up your information. So here's how it starts: Some random user posts a few links in a Discord server claiming there's a free Discord Nitro giveaway. If you ever use QR Code Login to sign in to Discord, make sure you’re using the desktop app, or if you’re on the web app, that your URL bar says “” exactly as it's written. Do NOT scan any QR codes from people you don’t know or those you can’t verify as legitimate. But it's a trick, said Malwarebytes' Jovi Umawing in a.
Which IIRC is Steam > Settings > Account > Manage Steam Guard Account SecurityĪnd this link, which I'm not sure how to reach in the native client, but that's another matter altogether.įailing to raise the security bar merely means more bad actors get a free lunch more often.One of the oldest scams is the temptation of “free Nitro.” While we can’t discount people who may be truly full of generosity and believe in gifting Nitro, getting a random DM from a stranger claiming to have chosen *you* for a Nitro giveaway is incredibly sus, and most likely a scam.ĭiscord will never ask you to scan a QR code in order to redeem a Nitro code. A new phishing scam tries to steal your Steam credentials by promising a free month of Discord Nitro, which is worth a whopping 9.99. If you forget to check the back door is locked before bedtime, 2FA is practically pointless, yes. I mean even if you have a clean copy of chrome, you can get hacked if someone convinced you to install a malicious plugin beforehand. If people want to log in outside of the official steam client and get phished, then well, who am I to stop them doing so. But the point is 2FA is really just one more key and one more door. I'll bet some of them never actually return to the ecosystem sadly. I recall seeing a reddit that suggested less than half of steam accounts have 2FA enabled, which I find hard to believe - trouble is, thousands of people do get hacked every week. Please don't tell you consider 2FA the end to all means and the accounts that get hijacked don't use it. On the other hand, 2FA doesn't, for obvious reasons, protect against phishing which is the #1 hijack scheme ATM. Trading & market is already tied to using 2FA. I would love if steam show everyone who does not enable 2FA a warning banner every time on startup. Originally posted by zaphodikus:This will keep happening.
0 kommentar(er)
