Nooc cusub oo phishing ah ayay dambiilayaashu u adeegsadaan inay xadaan oo dib u iibiyaan akoonnada Steam. Tani waa waxa ay khubaradu ugu yeeraan weerarka browser-in-browser, kaas oo soo jeedinaya in shaashadda gelitaanka ay u muuqato pop-up.
Farsamadan cusub ayaa horraantii sanadkan waxaa daahfuray cilmi-baare wata magac been abuur ah Mr.d0x. Hadda baaritaan ay samaysay shirkadda amniga ee Group IB waxay muujinaysaa in farsamadan loo isticmaalay in lagu joojiyo aqoonsiga akoonnada uumiga. Si la mid ah farsamooyinka phishing-ka ee la yaqaan, dhibbanaha waxaa loo weeciyey degel been abuur ah oo uu sameeyay hackersku. Taasi waa sidoo kale kiiska weerarradan ee isticmaalayaasha Steam. Dhibbanayaasha waxaa lagu duufsadaa website-ka tartanka Counterstrike oo waa inay galaan akoonkooda Steam.
Sida caadiga ah, shahaadada ssl iyo inta badan sidoo kale url ayaa muujinaya in aysan ahayn goob sharci ah. Farsamada biraawsarkaaga-in-browser, tani aad bay u adag tahay in la arko, sababtoo ah goobtan phishing-gu waxay isticmaashaa JavaScript si ay u muujiso daaqad soo gal ah, taas oo ku dhawaad aan kala sooci karin daaqada gelitaanka Steam ee dhabta ah.
Daaqada si fudud ayaa loo dhaqaajin karaa gudaha tab furan. Intaa waxaa dheer, URL-ka daaqada been abuurka ah wuxuu sidoo kale u muuqdaa mid sharci ah iyo qufulka cagaaran ee shahaadada SSL saxda ah ayaa la soo bandhigay. Kaliya marka dhibbanuhu xidho daaqada ugu horeysa ayaa cadaan doonta in shaashadda soo baxday ay qayb ka tahay bogga hadda jira.
Marka dhibbanuhu si guul leh uga soo galo daaqada beenta ah, dambiilayaasha waxay galaan akoonka Steam. Si aan loo digin dhibbanaha, marka si guul leh loo soo galo, waxaa loo gudbin doonaa bogga xaqiijinta gelitaanka tartanka.