Accounts and in-game payment information was recently targeted by a trojan called BloodyStealer and last summer, a bug in Steam’s code let gamers trick the platform’s Smart2Pay system to fill their digital wallets with unlimited funds. Steam has been abused in the past as well. A report from Sophos last summer showed malware on Discord is up 140 percent over 2020. Gaming Security WoesĪttacks on the gaming industry skyrocketed during the first year of the pandemic, with attacks on web applications shooting up 340 percent in 2020, according to Akamai.ĭiscord, which is popular for hosting gaming servers, has been grappling with a malware problem for many months. from Kaspersky Labs - so it’s no wonder that they’ve become common targets for phishing, malware and more. Stolen gamer accounts can fetch around $14 per 1,000 accounts in underground criminal forums, according to a report from Sept. “Behind the scenes, though, their Steam credentials have already been stored into the scam website.”
“When Discord users key in their Steam credentials in the fake pop-up, it will show them the error message saying, ‘The account name or password that you have entered is incorrect,'” the report said.
The gambit is intended to fool users into thinking they’re being taken to the Steam platform to enter in their login information - supposedly to fulfil the request to “link” the Steam account with Discord for the free Nitro subscription. Fake Pop-Up AdsĪs Malwarebytes Labs explained in the report, once a victim clicks on the button, the site appears to serve a Steam pop-up ad, but researchers explained the ad is still part of the same malicious site. The button initiates a fake pop-up window that appears to send targets off to Steam - but in fact, it keeps them on the same malicious page. There are several malicious domains associated with the spoofed page, analysts noted: The malicious link takes users to a spoofed Discord page with a button that reads, “Get Nitro.” This sub is operated by volunteers that aren't employed by Discord and does not function as an official support forum.“Just link your Steam account and enjoy,” the message says, and it includes a link purportedly to do just that. If you're having an issue with Discord, please contact support. If you believe a user has violated ToS, please report them. This sub is for talking about Discord as a product, service, or brand in ways that don't break Discord's Terms of Service or Guidelines.
Submitting there guarantees higher visibility from the people who can implement the suggestions.
To learn how to report them via the Discord Testers server, read this blog post for instructions! While feature requests and feedback inspire awesome discussions on the subreddit, we encourage sharing them with Discord directly via a Discord Feedback submission. Consider looking in the sidebar of subreddits you enjoy, reading the bios of your favorite content creators, or utilizing Server Discovery to find communities that are new to you!īug reports should be shared directly with Discord. Asking for or providing invites to non-official servers is not allowed. No advertising, self-promotion, spamming, selling or trying to buy accounts, trading, or nitro begging.
Any NSFW or objectionable content will be removed.Ĥ. Questions about other services, bots, or servers should be directed at their specific support channels. This includes topics that others have recently posted, posts and screenshots of Discord that do not inspire active discussion, content that comes from meme generators, and things of this nature. Controversial topics of discussion unrelated to Discord are not welcome on this subreddit. Absolutely no harassment, witch-hunting, sexism, homophobia, racism, or hate speech will be tolerated. Keep it civil and respectful, and do not make personal attacks or use offensive language in addressing others. Discord is a voice, video and text communication service to talk and hang out with your friends and communities. NOTE: /r/discordapp is unofficial & community-run.