The fact that the warning text that normally says "Note that X is not affiliated with Steam or Valve" was changed to "Note that *scam website* is affiliated with Steam or Valve" by the scammers is hilarious
absolutely hilarious seeing youtube posting "how to spot fraud" stuff in between videos ever since removing their built in measure to make fraud obvious
The second channel is RenoD, a Korean Arknights content creator (and NTTS approved pro gamer) His account got hacked 2 days ago and yesterday all his videos were privated, that’s also when the streams started going up today some community posts started disappearing I wish TH-cam/google would do something about these security flaws, if I’m suddenly on the opposite side of the planet then something’s wrong
small update: RenoD just got his google account back after about a week, now he's in the process of recovering his youtube channel to its previous state
@@Akaromaeda With Google there's basically zero customer support unless you're a paying for their Workspace business plan. For TH-cam, it's only if your channel or your incident is big enough, or if your channel is a part of a TH-cam MCN which is probably the only reason for joining. If something happened to you you can contact your manager at the MCN and have them forward your case to someone at TH-cam. If you're a 100% independent channel, with no MCN, and didn't pay for Workspace businesses plan you're kinda screwed and have to pray that TH-camSupport Twitter see your case.
While I do agree that they are most likely not a seperate entity, I have to say that trying to block the website with an infinite debugger breakpoint is pretty common in those areas. Thats like the go to first step to keep people from sniffing around your javascript. Although it's not very effective. At 6:41, for example, you could easily disable the breakpoints using the buttons over the message "Debugger paused" (the rightmost one). Or by simply pressing CTRL + F8. This will disable the breakpoints. Disabling Javasacript will often not open the websites at all because they are loaded using javascript in the first place. However reporting the domain is most likely the best way, as always. You'd simply get to snoop around a little for your own curiosity. Just wanted to point out that the whole breakpoint thing is pretty common.
when you open the dev tools, they send a debugger command who just stop every executing script. To avoid this you can remove every brake points (Dev tools -> Srouces -> Press 'Ctrl + F8') and then they just don't do anything else :) Also in the Network tab you can block some request who are sent to the server if that's something you need
This happened to me other day whilst I was streaming, I was dumb and actually put in my details knowing it looked off and thankfully they couldn’t get in cause of steam guard and managed to change my details. I am so thankful, otherwise I would’ve lost a lot of money honestly.
i personally find it hilarious that on the 2nd phishing site the info button that usually says "note that [website] is *not* affiliated with steam or valve" was edited to say that it IS 😭😭 theyre trying so hard
i almost fell for it but safeguard saved me, incredibly stupid of me but i realized quickly. i feel bad for people that actually lost their account to this tho and i thank you for talking about these streams.
3 days ago, I logged with my actual things on one of these sites and 1 minute later I thought of checking the community tab and boom, I realized fast and I got my account back in like 5 minutes, unscathed and unchanged a bit, luckily I didn't had a credit card linked to my Steam account, be safe out there.
It's not the opening that the page detects (that's impossible for security reasons!),it must be either that the page loses focus to the DevTools (unlikely because you switched windows which would also have triggered the onunfocus event) or by the page detecting the keypress F12. 6:28 It opened the debugger by running the debugger; statement in an infinite loop which is like a hard-coded breakpoint.
You can detect opening devtools, it's a known issue and there are known methods which are not patched. In this case though it's just running the debugger statement in a loop and it only has an effect if you have devtools already open.
wait, holy shit... i think i fell for this?! i remember clicking on a livestream on Valve's youtube (well, i thought it was) a couple weeks ago. I can't remember if I put in my password tho. but thank god i have steam guard (pretty sure i never entered a steam guard code...). Nothing seems fishy on my account, but going to change my password anyway just in case. I can't believe I'm so stupid. Thanks for the video!
The reason the sites dont load when you turn off javascript is probably because either they make the whole site using javascript or the page has some code that doesnt show the contents of the page before the whole page is loaded which needs javascript
In today's web development it's really common for webpages not to run if you disable JS, because a lot of development tools use JS to build the other elements not just script. The thing about pausing debugger or redirecting when you open the console is new to me though...
You could actually disable the debugger. If you click on that weird side-bookmark thing with a sort of line through it, and then press the debug button that is blue, it will stop. This way you can view the network.
I've actually seen this livestream and it said "scan this qr code" and i was like "ok they're trying to scam people". But nobody was typing in the chat that it was a scam. Chat was sub only So i subbed and it said i can chat in there in 15 years...
Wait if someone enters the username and password but doesn’t provide the steam-guard code, do the scammers still get your username and password details?
I fell for the cs2 one because it was late, I was excited, and the page name was valve, so I thought this must be real lol. I lost my my account but got it back within 15 minutes. After that, I was looking at the official counter strike Twitter and saw that the only way to get the beta was through the game and felt really dumb.
Ive had accidentaly click their link and just login my steam without hesitant,but after a few minute i realized that their channel is fake and i must changed my password faster before they reached it
i almost fell for this, the moment it asked for me to login onto my account i got suspicious. and realized the scam, i thank god for making me realize.
I remember a fake Metallica livestream for the new album, some random folks trying to scam crypto out of people. It was just the same interview clips from 2 years ago repeated and I didn't trust it at all. Sucks how this is happening in other mediums besides music.
I saw one of these livestreams it looked really real other than the qr code that I didn't think about at all, I scanned the code and right after that I saw the 1.7k subscribers thinking I downloaded malware on my phone
The debug trap is a very very common technique to prevent/hinder reverse engineering JavaScript. they could be related but solely that isn't enough to say.
ive been seeing these youtube shorts where they claim to give you a free knife with a link to the web page, if you click you get redirected to something that looks like steam but the URL isnt and it tells you to enter steam account info for the free knife skin. its so dumb that people actually fall for it.
@@ArcanePower1 The streams don't have anything to do with viruses though? Running an anti-virus will be absolutely useless, since these sites steal your username and password, but they never interfere with your computer.
I actually got one of these in my recommendations and clicked on it thinking it was real for a second 💀 Thank god I checked the subscriber count for "valve" first lol
I was using youtube on the tv, it doesn't show the subscribe counter unless you clicked. In the end I fell for the scam, but instantly noticed and changed all my passwords and I always had two factors authentication. I feel stupid after falling to this scams that I was always aware, but it is really easier to fall for it on the tv, since you can't see even the chat
i fell for the 2nd scam site since a different window popped up and sent it straight to my friends thinking im gonna get cs2 luckily they told me just in time.
@@l4y4j Change your password asap. Check to see if your account has any unknown sign ins and try to kick out all signed in devices. If you have Steam Guard, this won't be as big of an issue because the person with your password will have to send you a request to sign in. I actually fell for this too but since I have 2 factor authentication, I wasn't very concerned due to the fact they can't get my account so I just changed my password right away.
Using the "debugger" keyword to make it difficult to inspect a page using Chrome's dev tools is an old trick that legitimate sites use that don't want people to steal their JS. That they willingly have you download and run on your own computer for them. You can still run your own javascript through the console or inspect the page freely. Mostly it just interferes with tracing through the JS code itself.
I almost fell for it when these streams came out the first day. There was an "ESL" channel with their official logo with a very authentic looking site, the chat was muted so I caught that soon and didn't enter any information. Thank god I had steam authenticator. There was another stream with Valve and their real profile icon. I reported both of these channels.
Idk if I was lucky, but I felt for it, tried to log but had an error and after max 5 mins I saw that the channel that is streaming has only 17-19k subs and I just searched valve and saw the real valve acc has millions and then I changed my password instantly and for now my account is normal and no one tried to log or change something
![ทางเดินชีวิต - ธีเดช ทองอภิชาติ x อ.ไข่ มาลีฮวนน่า [Official MV]](http://i.ytimg.com/vi/1f3wcG16dd4/mqdefault.jpg)
The fact that the warning text that normally says "Note that X is not affiliated with Steam or Valve" was changed to "Note that *scam website* is affiliated with Steam or Valve" by the scammers is hilarious
it's just template
@@XdekHckr you totally missed the point
I fucking know right 💀💀💀
When hl3
something tells me that removing dislikes was a horrible idea
HMMMMMMMMMM
Wait what was the reason I forgor
@@Fixmeme1 there was no reason
absolutely hilarious seeing youtube posting "how to spot fraud" stuff in between videos ever since removing their built in measure to make fraud obvious
@@Fixmeme1 to protect their corporate friends from bad public image.
The second channel is RenoD, a Korean Arknights content creator (and NTTS approved pro gamer)
His account got hacked 2 days ago and yesterday all his videos were privated, that’s also when the streams started going up
today some community posts started disappearing
I wish TH-cam/google would do something about these security flaws, if I’m suddenly on the opposite side of the planet then something’s wrong
NO NOT RENOD FUCK NOOOOOOOOOOOOO
bro i wonder where did renod went, and then i read this
sh*t man not our another arknights bro, this is so sad
@@itskotobun yeah and it's recently turned into NFT news instead of csgo shit
google customer service as slow as always, you gotta love it
small update: RenoD just got his google account back after about a week, now he's in the process of recovering his youtube channel to its previous state
@@Akaromaeda With Google there's basically zero customer support unless you're a paying for their Workspace business plan.
For TH-cam, it's only if your channel or your incident is big enough, or if your channel is a part of a TH-cam MCN which is probably the only reason for joining.
If something happened to you you can contact your manager at the MCN and have them forward your case to someone at TH-cam.
If you're a 100% independent channel, with no MCN, and didn't pay for Workspace businesses plan you're kinda screwed and have to pray that TH-camSupport Twitter see your case.
1:39 is no gonna talk about how this just pops up here
saw that too ntts probably did it as a joke or maybe not
While I do agree that they are most likely not a seperate entity, I have to say that trying to block the website with an infinite debugger breakpoint is pretty common in those areas. Thats like the go to first step to keep people from sniffing around your javascript. Although it's not very effective. At 6:41, for example, you could easily disable the breakpoints using the buttons over the message "Debugger paused" (the rightmost one). Or by simply pressing CTRL + F8. This will disable the breakpoints.
Disabling Javasacript will often not open the websites at all because they are loaded using javascript in the first place.
However reporting the domain is most likely the best way, as always. You'd simply get to snoop around a little for your own curiosity.
Just wanted to point out that the whole breakpoint thing is pretty common.
i was gonna point out it
Couldn't you just use a language like python to scrape the website and view the stuff that way?
Glad you've pointed out that you can just disable breakpoints! I was gonna write about that.
thanks
There is a more advanced version of console blocker where disabling the debugger or breakpoints does not work.
I have my respects to the guy who lost their arknights youtube account.
Reno D... 😔
also that indonesian channel ripbozo
@@helper_bot bro, it maybe a malaysian channel or smth
RIP 😞
4:40
when you open the dev tools, they send a debugger command who just stop every executing script. To avoid this you can remove every brake points (Dev tools -> Srouces -> Press 'Ctrl + F8') and then they just don't do anything else :) Also in the Network tab you can block some request who are sent to the server if that's something you need
This happened to me other day whilst I was streaming, I was dumb and actually put in my details knowing it looked off and thankfully they couldn’t get in cause of steam guard and managed to change my details. I am so thankful, otherwise I would’ve lost a lot of money honestly.
Yeah me too.. put my details in and luckily steam guard stopped me.. it wanted me to move my authenticator to them
Same
i personally find it hilarious that on the 2nd phishing site the info button that usually says "note that [website] is *not* affiliated with steam or valve" was edited to say that it IS 😭😭 theyre trying so hard
i almost fell for it but safeguard saved me, incredibly stupid of me but i realized quickly.
i feel bad for people that actually lost their account to this tho and i thank you for talking about these streams.
I actually fell for it but thank god i had added my mobile phone and now its being spammed with login attempts💀
1:37 , I agree NoTTS, wonderful category.
I loved this video so much! I have watched it and I am going right on my way to download counter strike 2 right now! Thanks for the key!
npc
@@CeIes_te npc
I actually almost fell for this, but then remembered that valve said the only way to get cs2 beta access is through csgo main menu
same dude, I was about to put in my password when I saw the URL of the website, and immediately knew it was a scam
3 days ago, I logged with my actual things on one of these sites and 1 minute later I thought of checking the community tab and boom, I realized fast and I got my account back in like 5 minutes, unscathed and unchanged a bit, luckily I didn't had a credit card linked to my Steam account, be safe out there.
noooo they got our boy Reno, i can tell with the profile picture, he's a cool arknights content creator
Thanks to your prior videos I've already reported those sites 3 days prior to this video being uploaded.❤
"Note that source2-get is affiliated with Steam or Valve."
How can you doubt them when they're affiliated, probably even brothers?
It's not the opening that the page detects (that's impossible for security reasons!),it must be either that the page loses focus to the DevTools (unlikely because you switched windows which would also have triggered the onunfocus event) or by the page detecting the keypress F12.
6:28 It opened the debugger by running the debugger; statement in an infinite loop which is like a hard-coded breakpoint.
You can detect opening devtools, it's a known issue and there are known methods which are not patched. In this case though it's just running the debugger statement in a loop and it only has an effect if you have devtools already open.
1:37 relatable asf
Finally, finally, someone made a video about this phenomenon. Thanks, you saved my day. :)
yeah i saw like 5 of these, thank god someone actually made a video on this!
wait, holy shit... i think i fell for this?! i remember clicking on a livestream on Valve's youtube (well, i thought it was) a couple weeks ago. I can't remember if I put in my password tho. but thank god i have steam guard (pretty sure i never entered a steam guard code...). Nothing seems fishy on my account, but going to change my password anyway just in case. I can't believe I'm so stupid. Thanks for the video!
The reason the sites dont load when you turn off javascript is probably because either they make the whole site using javascript or the page has some code that doesnt show the contents of the page before the whole page is loaded which needs javascript
1:39 how did you know i searched that everyday, HOW!
1:39 i was literally on that link 5 minutes ago
In today's web development it's really common for webpages not to run if you disable JS, because a lot of development tools use JS to build the other elements not just script. The thing about pausing debugger or redirecting when you open the console is new to me though...
I know this is late but the debugger pausing is intentional and, in this case, forced upon the user to prevent reversing
finally, someone is talking about the cs 2 livestreams
You could actually disable the debugger. If you click on that weird side-bookmark thing with a sort of line through it, and then press the debug button that is blue, it will stop. This way you can view the network.
I've actually seen this livestream and it said "scan this qr code" and i was like "ok they're trying to scam people". But nobody was typing in the chat that it was a scam. Chat was sub only So i subbed and it said i can chat in there in 15 years...
NTTS and CS2 in the SAME VIDEO??? aint no way bro ❤️❤️
Wait if someone enters the username and password but doesn’t provide the steam-guard code, do the scammers still get your username and password details?
Yup
They just can't sign in so if you change your password you should be fine.
I fell for the cs2 one because it was late, I was excited, and the page name was valve, so I thought this must be real lol. I lost my my account but got it back within 15 minutes. After that, I was looking at the official counter strike Twitter and saw that the only way to get the beta was through the game and felt really dumb.
How do you got it back??
Cs2 breaking the internet is absolutely amazing but this thing is sad and bad
oh oh that description though, valve would be so mad with you right now
Ive had accidentaly click their link and just login my steam without hesitant,but after a few minute i realized that their channel is fake and i must changed my password faster before they reached it
Very lucky, normally it's an automated process, within a moment its normally stolen.
I fell for one of these a little ago. It was super late at night and I wasn't thinking straight lol. Be careful!
same
change your email and password right away make your steam acct private and set up a family view
"Bro I'm not even in 1080p mode"
-ntts, March 2023
i always laugh about these livestreams limited the chat to only subscribers for 40 years or longer, lmao its just too goofy
Thats a security flaw already. Someone should sue TH-cam....
Finally someone exposed those kids. This CS 2 livestreams was always on my home page and i was reporting all of them.
Congrats on 300k ❤
Rip to that guy who lost his Arknights TH-cam account
First comment😄! Love your vids man, keep it up
idk but i love your videos and been stalking you for a year. I feel like a nerd watch it
you dont have to disable javascript, you just have to disable / "enable ignoring" debugger statements
i almost fell for this, the moment it asked for me to login onto my account i got suspicious. and realized the scam, i thank god for making me realize.
Nice video! Are you Swedish like me?
A naked man fears no pickpocket.
Prison pocket.
I saw one having official steam link instead of about:blank in the pop-up
i've encountered one and i managed to get one of the websites taken down
I remember a fake Metallica livestream for the new album, some random folks trying to scam crypto out of people. It was just the same interview clips from 2 years ago repeated and I didn't trust it at all. Sucks how this is happening in other mediums besides music.
i almost fell for that cs2 live but i noticed it was a s
cam before
It’s about time someone talked about this
oh wow the one that opens it in a new window is clever. that probably could've got me if I cared about cs2 haha
I saw one of these livestreams it looked really real other than the qr code that I didn't think about at all, I scanned the code and right after that I saw the 1.7k subscribers thinking I downloaded malware on my phone
You 100% did
The debug trap is a very very common technique to prevent/hinder reverse engineering JavaScript. they could be related but solely that isn't enough to say.
As an Indonesian, I burstly laughed at 4:11
ada indo coy
oh that first account is not a hacked account, thats a reperpoused account from the sick childen scams
lmao scammer got scammed
2:58 I love how they edited the "Is not affiliated with" to just say "Is affiliated with"
ive been seeing these youtube shorts where they claim to give you a free knife with a link to the web page, if you click you get redirected to something that looks like steam but the URL isnt and it tells you to enter steam account info for the free knife skin. its so dumb that people actually fall for it.
I literally fell for this in one group on steam and didn't even realize it was fake....now I'm just trying to get my account back
4:37 that guy is playing arknight btw
It's actually happened to me on twitch while watching dota2 streamer...fake giveaways..lucky got it back after contacting steam support
1:38 very interesting link poped up
1:39 bro wtf 🥲
being honest i was so desperate i fell for it even though im usually tight on online security
same :( I feel so dumb
bruh
Skill issue, unlucky 😎
btw you can use mitmproxy to intercept the http(s) requests and grab the URLs & API endpoints that way
honestly, i think my manly appearance could probably stop all scams
idk why but I clicked on a link from a livestream with counter strike and nothing happened (please help im in massive danger)
my brother in christ 😭
Dont worry, as long as you didnt fill in your password you are fine. If you really want to be safe you can always run an anti-virus scan
@@ArcanePower1 The streams don't have anything to do with viruses though? Running an anti-virus will be absolutely useless, since these sites steal your username and password, but they never interfere with your computer.
ntts saving lives out here 🙏🙏
I actually got one of these in my recommendations and clicked on it thinking it was real for a second 💀
Thank god I checked the subscriber count for "valve" first lol
I was using youtube on the tv, it doesn't show the subscribe counter unless you clicked. In the end I fell for the scam, but instantly noticed and changed all my passwords and I always had two factors authentication. I feel stupid after falling to this scams that I was always aware, but it is really easier to fall for it on the tv, since you can't see even the chat
The official Valve TH-cam channel has 1 million subscribers. That's need to know.
Thanks for bringing attention to this
When i looked at the thumbnail i thought who am I subbed to😂
wow since when valve has 1000+ channels
Every time they think about making a 3rd game of anything and decide against it they make a new channel
Great video! I enjoyed it!
1:39 hey its just me or the url is...?
which font do you use?
ps: i like your vids
just know that in the future, cs3 will never release because valve cant count to 3
NTTS if you refrssh a About:blank page then it will always be a blank screen. You needed to refresh the popup
"Scan this QR code"
"Why?"
"Trust me bro."
Thanks for your video.
i fell for the 2nd scam site since a different window popped up and sent it straight to my friends thinking im gonna get cs2 luckily they told me just in time.
durrrrr
i fell for this because i was so hyped
@Holman idk i told that to steam support nobody answered
@@l4y4j Change your password asap. Check to see if your account has any unknown sign ins and try to kick out all signed in devices. If you have Steam Guard, this won't be as big of an issue because the person with your password will have to send you a request to sign in. I actually fell for this too but since I have 2 factor authentication, I wasn't very concerned due to the fact they can't get my account so I just changed my password right away.
@@monahikosliekos i was sleeping when it was stolen he changed the gmail of the account and the password already
1:40 ayo???
You are sooooo funny in those scamming videos analyse you make
love you
❤❤❤❤
got scammed by on of these, glad that you made this video
Using the "debugger" keyword to make it difficult to inspect a page using Chrome's dev tools is an old trick that legitimate sites use that don't want people to steal their JS. That they willingly have you download and run on your own computer for them.
You can still run your own javascript through the console or inspect the page freely. Mostly it just interferes with tracing through the JS code itself.
It sucks cause I actually fell for one of these. Incredibly, I managed to get my steam back. I believe it was last saturday.
I woke up today and suddenly i was in a counter strike two server without me remembering that i joined it and u cant message anywhere
7:28 thank you lol
R.i.P Random Korean Arknights youtuber. May you be missed.
I almost fell for it when these streams came out the first day. There was an "ESL" channel with their official logo with a very authentic looking site, the chat was muted so I caught that soon and didn't enter any information. Thank god I had steam authenticator.
There was another stream with Valve and their real profile icon. I reported both of these channels.
what editing software do you use?
1:39 sus
These people are probably not related, it's a template like a wix site, but you know, for phishing
I love how at 2:27 they just removed the “not” in the warning lmao.
5:25 u can use burp suite to check the endpoint
Idk if I was lucky, but I felt for it, tried to log but had an error and after max 5 mins I saw that the channel that is streaming has only 17-19k subs and I just searched valve and saw the real valve acc has millions and then I changed my password instantly and for now my account is normal and no one tried to log or change something
fun fact: disabling javascript on a page usually leads to the page failing to function (because there's no code running)
Can't believe you gave asdas's account to the cs:go 2 phishers
2:53 the voice 👁️👄👁️