Grinding Gear Games is warning followers to change their passwords after a post containing a phishing link appeared briefly on the Path of Exile page on Steam.
«Earlier today, a malicious news post containing a phishing link went up on the Path of Exile Steam page from a compromised account,» the studio wrote in a message posted to Steam and Twitter. «The post was taken down quickly, but if you followed the link or suspect your account may also be compromised, please take immediate action to secure your account.»
Phishing, simply put, is a type of scam that uses fake links in emails or websites to entice people to share personal or sensitive information, or install malware onto their PCs. It's a very common form of «social engineering,» to use the polite term for it, and often easy to pick out: If you've ever received a poorly-spelled email warning that your mailbox is full and telling you to «click here to increase storage space,» you know what I'm talking about.
We should all know better by now, but as we noted a couple years ago, phishing emails are still a big danger because of the sheer volume of the things, but more importantly because of their increasing sophistication. Bad spelling and weird fonts are easy to pick out, but sometimes it's honestly hard to tell what's legit and what's going to cause you a very bad Tuesday three months down the road.
That seems to be the case here: No information about the malicious post itself is provided in the update, but Steam user Keijokainen said in the comments that the link led to a fake registration page for a Path of Exile 2 beta test. The scam site was «pretty well disguised» according to Keijokainen, and «a higher effort than normal scam attempts.» Another user said the link led to «pathofexiie.com»—note the sequential «ii» rather than il, which is sometimes easy to overlook at a quick glance—rather than pathofexile.com.
Making the phishing post more believable is that a Path of Exile 2 beta is on the way: It was
Read more on pcgamer.com