14 DAY TRIAL // Cybercriminals have replicated the Steam Trading website which allows Steam account owners to exchange gifts and in-game items with other members of the community.
Experts from security firm GFI Software have come across a phony site that mimics the news page on which Valve announced the launch of the feature. This malicious webpage informs visitors that they can play one game for free since it’s “Steam Happy Day.”
To get access to the free game, users must provide their usernames, passwords, and email addresses. Then, they must select the game they want to play from a drop-down list.
In the end, no one gets to play the much promised game for free. Instead, the phishers gain access to all the data provided by the victim, which they can utilize to bypass Steam Guard.
“Be wary of free games and offers that would cost you more than you want to bargain for, especially if they’re hosted on dubious sites that use familiar strings in URLs you’d normally see in legitimate sites. To be safe, visit Steam directly to double-check if they indeed have free offers,” GFI’s Jovi Umawing advised.