Scammer(https://steamcommunity.com/profiles/76561198378304894) send messages to victims for inviting to exchange in-game items. He let you to connect to legit trading website. (e.g. csmoney, bitskins) And also, he introduce fake website(https://suffinfo.com/) to check item's price.
fakewebsite do picture-in-picture attack. It steals victim's account ID and password and also 2FA code.
Login window is totally fake(with picture-in-picture attack, it seems totally legit) https://suffinfo.com/gYJOUC8ck7/jc1e6f6sts/27dsj8qc8h?q=gYJOUC8ck7&s=445cfa720ed0d28f76a0b692a7a5afad
Victim send trade request.(from: victim, to: scammer) By using victim's stolen credentials, scammer's bot automatically cancel this request and create a new fake trade(from: victim, to: scammer's bot) Scammer's bot has same profile as a scammer. Steam mobile app's UI is so poor, so victim can't get fake trade is (from: victim, to: scammer's bot) one.
- scammer: https://steamcommunity.com/profiles/76561198378304894
- fake website: https://suffinfo.com/
- scam bot: https://steamcommunity.com/profiles/76561198891640310
fake website was developed by Faker(https://t.me/savage67) Faker's service are listed in this (password: gg)
- scam tutorial: https://telegra.ph/Coins-v2-Faker-05-01
- scam introduction: https://pastebin.com/HMQubyxR
- scam introduction: https://pastebin.com/AXvhC9UF
- scam introduction: https://pastebin.com/GYeEV9BG
- scam introduction: https://pastebin.com/87v0fULC
fake website has a same Admin login page. e.g. https://suffinfo.com/Admin/login.php
`
`