What if my account was hacked and I got VAC Ban?

Alle diskussioner > Steam-fora > VAC Discussion > Trådoplysninger

Nacho Type For 15 timer siden

I understand that you're Steam and you can do whatever you want. But seriously, walk in my shoes for a minute here. It's really unfair that after spending so much money on Steam, your account got hacked by someone, on a different device, you don't even know who cheated with the account you invested so much in.

I heard that you get notifications on your phone and through emails saying, 'Did you log in? If this isn't you, change your password'. But I don't always receive that notification when I log in using different devices.

You can't assume that every user will get that notification. And when you try to explain your side, Steam just responds with, "We can't do anything about that." Why not find a way to actually help us? It's not right to expect us to take the blame when we had no idea what was going on.

Edit:
This has nothing to do with clicking phishing links or sharing info. This is about an account being inactive for months, no one else using the same device, and somehow it still got accessed and banned for cheating. That means someone logged in from a completely different location and hardware without the owner’s involvement.

The issue is not about who’s “at fault,” but about how Steam handles proven unauthorized access. If an account shows clear signs of being used by someone else—different IPs, new hardware, cheating logs while the owner was away—then Steam should investigate before applying or upholding a permanent ban.

Not every compromise is from carelessness. Data leaks, stolen session tokens, and SIM/email exploits can give access without the owner doing anything wrong. There needs to be a better process for recovery and case review, not blanket blame on users.

Sidst redigeret af Nacho Type; For 6 timer siden

< >

Viser 1-15 af 56 kommentarer

Beardface31 For 15 timer siden

There is no ban on the account you are posting from..

Beardface31 For 15 timer siden

And...

Accounts are not hacked. They are hijacked because you were careless with your account information.

If the account was used to break the rules that falls on you. Makes the ban correct.

Sidst redigeret af Beardface31; For 15 timer siden

Nacho Type For 15 timer siden

Oprindeligt skrevet af Beardface31:
And...

Accounts are not hacked. They are hijacked because you were careless with your account information.

You can’t assume every hijacked account is the user’s fault. People follow security steps, but breaches, phishing, and system flaws still happen. Steam should focus on improving recovery support instead of dismissing users as careless.

Beardface31 For 15 timer siden

Oprindeligt skrevet af Nacho Type:
Oprindeligt skrevet af Beardface31:
And...

Accounts are not hacked. They are hijacked because you were careless with your account information.

You can’t assume every hijacked account is the user’s fault. People follow security steps, but breaches, phishing, and system flaws still happen. Steam should focus on improving recovery support instead of dismissing users as careless.

No..

EVERY time it is their fault.

They either gave their details away or compromised their computers.

The Giving One For 15 timer siden

Oprindeligt skrevet af Nacho Type:
People follow security steps, but breaches, phishing, and system flaws still happen.

Sure, someone "hacked" a mega-database where they had millions worth of addresses, email addresses, credit card into, other payment method info, names, etc. right at their fingertips and they said, "nah, nevermind that gold mine, before we get caught and this breach is closed, let's play some games on this random dude's account over here and get it banned ! Yea ! That would be cool !"

EDIT..............

Oprindeligt skrevet af Nacho Type:
It's not right to expect us to take the blame when we had no idea what was going on.

Translated :

Since I can't take accountability for my mistakes, I need someone else to do it, in this case, Valve. Even when I have no idea what I am doing, the responsibility for my actions needs to be on someone else's shoulders.

Sidst redigeret af The Giving One; For 14 timer siden

d3str0y3r For 14 timer siden

Oprindeligt skrevet af Nacho Type:
Oprindeligt skrevet af Beardface31:
And...

Accounts are not hacked. They are hijacked because you were careless with your account information.

You can’t assume every hijacked account is the user’s fault. People follow security steps, but breaches, phishing, and system flaws still happen. Steam should focus on improving recovery support instead of dismissing users as careless.

No amount of security can stop people from handing out their account info. There has been no breaches on Steam and in the event someone did... they wouldn't waste their time on end user accounts. They would be going after accounts with with far more power.

Also it is way too easy to fake a hijacked account. There was a time where Valve removed bans off hijacked account. Cheaters found ways to abuse it to get unbanned.. so they stop and it's not coming back.

Steps to fake account hijacking:

Use VPN
Sign into account and change some details like email and password
Cheat until banned
Start account recovery
Get unbanned
Repeat

Cheater also made accounts to pass around to other cheaters until the account was banned and then the person would cry to support my account was stolen unban me..... and repeat.

Nacho Type For 14 timer siden

Oprindeligt skrevet af Beardface31:
Oprindeligt skrevet af Nacho Type:

You can’t assume every hijacked account is the user’s fault. People follow security steps, but breaches, phishing, and system flaws still happen. Steam should focus on improving recovery support instead of dismissing users as careless.

No..

EVERY time it is their fault.

They either gave their details away or compromised their computers.

Accounts can get hacked due to third-party data leaks, phishing links that look safe, or malware that can sneak past antivirus software. Even accounts that aren't being used—like someone’s while they are in military training or deployed—can be accessed if their login info was leaked somewhere else.

Steam accounts often share login details with many other sites, and when a database gets hacked, attackers use automated tools to try those logins everywhere.

So, it's wrong to say that every situation is the user's fault. Having good security habits can lower the risk, but it doesn't protect someone completely from outside attacks, credential stuffing, or unnoticed leaks.

Nacho Type For 13 timer siden

Oprindeligt skrevet af d3str0y3r:
Oprindeligt skrevet af Nacho Type:

You can’t assume every hijacked account is the user’s fault. People follow security steps, but breaches, phishing, and system flaws still happen. Steam should focus on improving recovery support instead of dismissing users as careless.

No amount of security can stop people from handing out their account info. There has been no breaches on Steam and in the event someone did... they wouldn't waste their time on end user accounts. They would be going after accounts with with far more power.

Also it is way too easy to fake a hijacked account. There was a time where Valve removed bans off hijacked account. Cheaters found ways to abuse it to get unbanned.. so they stop and it's not coming back.

Steps to fake account hijacking:

Use VPN
Sign into account and change some details like email and password
Cheat until banned
Start account recovery
Get unbanned
Repeat

Cheater also made accounts to pass around to other cheaters until the account was banned and then the person would cry to support my account was stolen unban me..... and repeat.

Hackers don’t need a Steam breach or someone giving away their info. They use leaked emails and passwords from other sites, fake login pages, or viruses to get in. Even careful people can be hit. Yes, some fake it, but that doesn’t mean everyone’s lying.

Beardface31 For 13 timer siden

Oprindeligt skrevet af Nacho Type:
Oprindeligt skrevet af Beardface31:

No..

EVERY time it is their fault.

They either gave their details away or compromised their computers.

Accounts can get hacked due to third-party data leaks, phishing links that look safe, or malware that can sneak past antivirus software. Even accounts that aren't being used—like someone’s while they are in military training or deployed—can be accessed if their login info was leaked somewhere else.

Steam accounts often share login details with many other sites, and when a database gets hacked, attackers use automated tools to try those logins everywhere.

So, it's wrong to say that every situation is the user's fault. Having good security habits can lower the risk, but it doesn't protect someone completely from outside attacks, credential stuffing, or unnoticed leaks.

Using third party sites IS giving your information away.

Again, Steam accounts are not hacked.

Nacho Type For 13 timer siden

Oprindeligt skrevet af Beardface31:
Oprindeligt skrevet af Nacho Type:

Accounts can get hacked due to third-party data leaks, phishing links that look safe, or malware that can sneak past antivirus software. Even accounts that aren't being used—like someone’s while they are in military training or deployed—can be accessed if their login info was leaked somewhere else.

Steam accounts often share login details with many other sites, and when a database gets hacked, attackers use automated tools to try those logins everywhere.

So, it's wrong to say that every situation is the user's fault. Having good security habits can lower the risk, but it doesn't protect someone completely from outside attacks, credential stuffing, or unnoticed leaks.

Using third party sites IS giving your information away.

Again, Steam accounts are not hacked.

Dude, look it up. Stop giving me false information. You clearly don't know what you are talking about.

Accounts get taken over without the user handing out anything:
Credential stuffing: Hackers use passwords leaked from other sites and try them on Steam.
Phishing: Fake Steam pages steal logins.
Malware/token theft: Keyloggers or session hijacks grab access.
SIM swap/email takeover: Attacker resets your password via your phone or email.

Call it “hacked” or “hijacked,” the result is the same: unauthorized access without intentional sharing.

#10

Beardface31 For 13 timer siden

Oprindeligt skrevet af Nacho Type:
Oprindeligt skrevet af Beardface31:

Using third party sites IS giving your information away.

Again, Steam accounts are not hacked.

Dude, look it up. Stop giving me false information. You clearly don't know what you are talking about.

Accounts get taken over without the user handing out anything:
Credential stuffing: Hackers use passwords leaked from other sites and try them on Steam.
Phishing: Fake Steam pages steal logins.
Malware/token theft: Keyloggers or session hijacks grab access.
SIM swap/email takeover: Attacker resets your password via your phone or email.

Call it “hacked” or “hijacked,” the result is the same: unauthorized access without intentional sharing.

This has been brought up countless times here. It is always the same. You compromised your account.

#11

Nacho Type For 13 timer siden

Oprindeligt skrevet af Beardface31:
Oprindeligt skrevet af Nacho Type:

Dude, look it up. Stop giving me false information. You clearly don't know what you are talking about.

Accounts get taken over without the user handing out anything:
Credential stuffing: Hackers use passwords leaked from other sites and try them on Steam.
Phishing: Fake Steam pages steal logins.
Malware/token theft: Keyloggers or session hijacks grab access.
SIM swap/email takeover: Attacker resets your password via your phone or email.

Call it “hacked” or “hijacked,” the result is the same: unauthorized access without intentional sharing.

This has been brought up countless times here. It is always the same. You compromised your account.

Edit:
Saying it countless of times doesn’t make it true. Not every account loss is the users fault. Hackers use leaked passwords from other sites, phishing pages, malware, or SIM/email resets to get in — even when the person never shared info. As I have said many times before.

Like, I get it’s your fault if you forgot to log out, but not when you haven’t touched your account for months and never gave anyone your details. Stop assuming 100% user fault without proof.

Sidst redigeret af Nacho Type; For 13 timer siden

#12

Aluvard For 13 timer siden

Oprindeligt skrevet af Nacho Type:
Oprindeligt skrevet af Beardface31:

This has been brought up countless times here. It is always the same. You compromised your account.

Saying it “over and over” isn’t proof. Not every takeover needs the user to share info. Credential-stuffing from other site leaks, phishing, malware, SIM/email resets, and token theft all work without the victim “giving it away.” Some fake hijacks, sure. That doesn’t make all hijacks fake. Stop claiming 100% user fault without evidence.

Nothing from your list happens without user being careless with their PC or data. Ultimately, it goes back to square one - user was at fault.

#13

Nacho Type For 13 timer siden

None of you are understanding what I’m saying. I’m not denying that some users are careless. My point is that not every hijack comes from users fault. Some people lose access while away or because of breaches and attacks outside their control. Repeating “user fault” doesn’t address that. If you’re going to argue, at least respond to the actual point instead of repeating the same blame.

#14

Aluvard For 13 timer siden

Oprindeligt skrevet af Nacho Type:
None of you are understanding what I’m saying. I’m not denying that some users are careless. My point is that not every hijack comes from users fault. Some people lose access while away or because of breaches and attacks outside their control. Repeating “user fault” doesn’t address that. If you’re going to argue, at least respond to the actual point instead of repeating the same blame.

So which one isn't user fault?
Credential stuffing - user fault for using same password everywhere.
Phishing - user fault. It's very easy to verify if page is legit or not yet people still fail for it. Mostly due to greed or "♥♥♥♥♥♥♥♥♥♥".
Malware/token theft - user dowloaded malware or entered credentials on phishing site. User fault + lack of basic understanding of computer/internet security.
Sim swap/email - same as above. User failed to keep his phone/email secure.

#15

< >

Viser 1-15 af 56 kommentarer

Per side: 1530 50

Alle diskussioner > Steam-fora > VAC Discussion > Trådoplysninger

Dato opslået: 21. okt. kl. 14:41

Indlæg: 56

Start en ny diskussion