A new phishing campaign is doing the rounds on the Steam game distribution platform. Fraudsters trick Steam users into handing over their credentials via a roulette-style game promising free keys. The fraudsters funnel the victims to the phishing websites with the help of a redirector domain which is hidden behind a shortened URL shortened using Twitter’s link-shortening service. The phishing sites are promoted on Steam platform using already hijacked accounts which deliver the shortened URLs to their friend list using the Steam chat.
Source: https://www.bleepingcomputer.com/news/security/steam-phishing-campaign-steals-credentials-hijacks-accounts/

