Hackers Use New Technique to Steal Steam User Identity

  • Share

Steam service users seem to need to be wary. The reason is, the hackers have a new technique to steal their  Steam account. 

The technique is referred to as browser-in-the-browser. Which is a technique of tricking users by creating a fake login page in the currently active browser.

Thus, the app appears to appear as a pop-up page to enter the targeted login service. In March 2022, BleepingComputer  was the first to report on the capabilities of this new phishing kit. It’s created by security researcher mr.d0x.

Cybersecurity company Group-IB in its official blog revealed there were 150 hacking modes last July using this browser-in-the-browser technique. According to the Group-IB group. The hackers took advantage of Steam’s login system. Which “uses a pop-up window for user authentication, rather than a new tab,”

By using this technique, hackers trick potential victims with a lure in the form of a web page. That contains a log in button. Furthermore, hackers also use several offers such as offers to join a team for LoL, CS, Dota 2, or PUBG tournaments.

“Unlike traditional phishing, which opens the phishing site’s page in a new tab, this technique opens a fake browser window in the same tab to reassure users that it’s legitimate. Users can even switch between 27 different language interface pages, ” wrote Group-IB.

Quoting from The Ministry of Finance Website About Hackers

Phishing is an attempt to obtain information on someone’s data by using phishing techniques. The data targeted by phishing are personal data (name, age, address). Account data (username and password), and financial data (credit card, account information).

Quoted by Makeuseof , this phishing attack aims to sell access to these accounts. With several prominent Steam accounts worth between US$100,000 (Rp1.4 billion) to US$300,000 (Rp4.4 billion).

Potential victims are targeted by direct messages on Steam Inviting them to join LoL, CS, Dota 2, or PUBG tournament teams.

The link shared by the phisher will take the target to a phishing site. That appears to be an organization that sponsors and hosts esports competitions.

Source : CNNIndonesia

  • Share