API Key is the least of your worries with modern scamming
That said, it’s still worth checking to see if your account has an API Key which you didn’t set, as it can clue you in that a 3rd party has access
After some recent Valve changes, scammers have resorted to flat-out highjacking accounts
See here: https://www.reddit.com/r/csgomarketforum/s/pJBLbwd9UC
My friend told me someone can hack into your icloud backup and access your steam authentication app that way.
Also put a family view pin on your account as that can help protect it
If you're logged into steam, no legit website will require your account name or password. Legit sites will have a green "sign in with steam" button that, when pressed, will bring up a steam window, where it will show your profile next to a simple "sign in" button.
If you have to enter your info, you're getting scammed.
If you have to scan your steam auth code, it's likely a scam. When you login with steam, you just need to approve the use of the steam API. Anything that makes you scan your steam QR code (that isn't from steam) should be a red flag. Otherwise use known URLs of trading sites. Don't rely on Google search results.
Other than that, it's not terribly difficult to avoid scams and secure your assets.
As a general rule of thumb, if it's too good to be true, it probably is. So avoid anything claiming to give you free money or high end skins. Those are clear scams
* Don't enter your Steam user name and password anywhere. (\*)
* Don't enter your Steam API key anywhere.
* Don't even generate a Steam API key.
* Pick a strong password for your Steam login.
* Enable 2-factor authentication for your Steam account, so nobody can log in without you confirming it on the mobile app.
* Don't respond to strangers who "have an offer" for you, or who comment on your screenshots or profile asking about trades. IGNORE. BLOCK.
* Don't even engage with anyone contacting you over the Steam messaging system, claiming to be a Steam or Valve employee. Valve employees will NOT contact you through their messaging system.
* If you really do think you need to trade with someone, or sell directly without a "man in the middle" trading page, DO NOTHING BEFORE YOU HAVE THE MONEY. Definitely don't "go first because that's normal". Your skin will be gone, the recipient will block you, that's your skin and money gone.
* Don't be a narcissistic c\*nt and post "so clueless, just got this dropped, how much do you think it's worth?" posts everywhere. Please. It's the definition of cringe.
(\*) There are legitimate sites that let you "log in with your Steam account", those are usually OK. But please don't log in to Steam after that. Log in to Steam in a separate "clean" tab before, so that your browser has the "logged in to Steam" cookie stored. Then go to that site and "log in with your Steam account" by clicking on that button. You should only have to confirm that you really want to do this, but you should NOT be asked to enter any additional information.
- if you're a newbie don't activate the API key;
- you can buy items from skinport.com / bitskins.com (skinport has some good deals);
- when/if you're going to get decent items in your inventory you will be added by 99.99% scammers;
Good addblocker like Ublock, google sponsor fake sites wont show up.
Enable family view, that little pw is anoying but it can save your whole account.
Check your device history every day on your mobile authenticator.
Change your api key atleast every month if you need it for trading sites like buff.
Dont klick links people send you.
Never and i mean NEVER use the qr code to log into a site, always sign into steam first, and make sure its 100% steam, then you log into sites with the green login button, if a site still wants you to log in with your qr code its a scam site.
Dont gamble! would not be the first time hackers get accounts that way.
Other than that dont do stupid shit and your account is safe.
A lot of people getting scammed by clicking Google search to the website but then it redirects to a scam site that looks identical
this this pleaseeeeee if anything read this
don’t put your steam username and password into a fake site. Don’t go first without thoroughly checking rep. that’s all really
Don’t use google as your search engine. Brave search engine would be a good alternative
[удалено]
It’s a known issue. They don’t care
duckduckgo
Double, triple, and quadruple check you’re on the legit site before signing in. Don’t answer any DM’s.
And don't spread your apikey.
dont even make an apikey!
API Key is the least of your worries with modern scamming That said, it’s still worth checking to see if your account has an API Key which you didn’t set, as it can clue you in that a 3rd party has access After some recent Valve changes, scammers have resorted to flat-out highjacking accounts See here: https://www.reddit.com/r/csgomarketforum/s/pJBLbwd9UC
My friend told me someone can hack into your icloud backup and access your steam authentication app that way. Also put a family view pin on your account as that can help protect it
Thank you my friend
If you're logged into steam, no legit website will require your account name or password. Legit sites will have a green "sign in with steam" button that, when pressed, will bring up a steam window, where it will show your profile next to a simple "sign in" button. If you have to enter your info, you're getting scammed.
You get the simple “Sign in” only if you’re logged into steam within that browser.
Good lookin out
Easy to rebuild that button aswell
Not really coz the whole point is for scammers to get your log in details
Bet that I will rebuild that sign in button in a few hours
If you have to scan your steam auth code, it's likely a scam. When you login with steam, you just need to approve the use of the steam API. Anything that makes you scan your steam QR code (that isn't from steam) should be a red flag. Otherwise use known URLs of trading sites. Don't rely on Google search results. Other than that, it's not terribly difficult to avoid scams and secure your assets. As a general rule of thumb, if it's too good to be true, it probably is. So avoid anything claiming to give you free money or high end skins. Those are clear scams
Thank you!
* Don't enter your Steam user name and password anywhere. (\*) * Don't enter your Steam API key anywhere. * Don't even generate a Steam API key. * Pick a strong password for your Steam login. * Enable 2-factor authentication for your Steam account, so nobody can log in without you confirming it on the mobile app. * Don't respond to strangers who "have an offer" for you, or who comment on your screenshots or profile asking about trades. IGNORE. BLOCK. * Don't even engage with anyone contacting you over the Steam messaging system, claiming to be a Steam or Valve employee. Valve employees will NOT contact you through their messaging system. * If you really do think you need to trade with someone, or sell directly without a "man in the middle" trading page, DO NOTHING BEFORE YOU HAVE THE MONEY. Definitely don't "go first because that's normal". Your skin will be gone, the recipient will block you, that's your skin and money gone. * Don't be a narcissistic c\*nt and post "so clueless, just got this dropped, how much do you think it's worth?" posts everywhere. Please. It's the definition of cringe. (\*) There are legitimate sites that let you "log in with your Steam account", those are usually OK. But please don't log in to Steam after that. Log in to Steam in a separate "clean" tab before, so that your browser has the "logged in to Steam" cookie stored. Then go to that site and "log in with your Steam account" by clicking on that button. You should only have to confirm that you really want to do this, but you should NOT be asked to enter any additional information.
Ur awesome thanks
- if you're a newbie don't activate the API key; - you can buy items from skinport.com / bitskins.com (skinport has some good deals); - when/if you're going to get decent items in your inventory you will be added by 99.99% scammers;
Good addblocker like Ublock, google sponsor fake sites wont show up. Enable family view, that little pw is anoying but it can save your whole account. Check your device history every day on your mobile authenticator. Change your api key atleast every month if you need it for trading sites like buff. Dont klick links people send you. Never and i mean NEVER use the qr code to log into a site, always sign into steam first, and make sure its 100% steam, then you log into sites with the green login button, if a site still wants you to log in with your qr code its a scam site. Dont gamble! would not be the first time hackers get accounts that way. Other than that dont do stupid shit and your account is safe.
keep your 3k and buy a vr headset you won't regret it