A new phishing campaign abuses the Steam gaming platform to steal users’ login credentials and hijack user accounts.
How does the campaign work?
Researchers from Malwarebytes Labs have observed the phishing campaign and have described it in detail.
In their blog, the researchers wrote, “Links in identical campaigns in the past were not hidden behind a URL shortener. It’s also no surprise that these links kept changing. In this case, the shortened URLs have redirected to the following domains, which are less than four months old, at some point: