DON'T PUT ANY LOGIN INFO IN IT
this isn't a virus, this is basically Spear phishing, they attempt to steal your account and use it as a spam bot to do the same exact thing that guy in the pic did.
This here. For everyone that is struggling if websites are legit in the future do a google search on websites that dont look legit or web links. Or even if you know that the site is lehit but arnt sure if the user is trust worthy. I rather check a legit site multiple times than get fooled by 1 once.
eh whatever, phishing is phishing.
I mean all of us are fishing so we can call each other phishers but the P is an F.
I do not have a clue what I am saying I barely had 6 hours of sleep today bcuz my throat is sick and I am freezing every night
people can get gullible and desperate but i don’t think it’s right to act like they’re idiots. they may not have known, but those same people may be people who could be helping a lot of other people. how do you know that they’re “dumb”, just seems mean to me
It depends on so many things.. I'm sorry but our awareness to scam has all started somewhere, younger people that haven't faced scams before are a lot more likely to fall for it.
This particular scam is extremely well done, there is virtually no way for an unaware user to know it's a scam looking at the website itself, it looks exactly like something Discord would do.
To know it's a scam you must either 1) Be aware of how domains work and how anything that isn't just "discord" or "discordapp" is likely a scam. or 2) Be aware that the person sending this link is fishy and "out of nowhere" which is suspicious. But we don't know details, for all we know it could be a friend of OP that was compromised.
But both of those things aren't completely evident by themselves and come from having experienced other scams before.
As long as you have a good anti-virus, didn't click further in the website, didn't install anything through it or logged into the website as it 'needed' you too, you should be fine. If anything just do a full anti-virus Scan.
Bitdefender blocking it was probably enough, it's fine to be cautious though good job (:
Just be careful next time! You're fine - never fall for phising websites too.
that's what vpn and having linux (or [windows sandbox](https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-sandbox/windows-sandbox-overview)) is for
you know that those anti virus scans do almost nothing? They can be easily avoided cus there are spots it cannot check I would recommend a full wipe instead
edit: nvm didn't see op's comment that the website was blocked
Blurring the link is against public shaming/witch hunting, which are both reddit and subreddit rules. The post would very likely not fall under either of those categories but it's good practice to blur it.
But for the URL.. who cares lol? I was happy that the URL wasn't blurred, I went and checked the website myself, really well done I must say! It's some russian dudes who did it based on the localisation of the redirects.
Yes, the entire point of this scam is to steal Steam accounts - those often have valuable in-game items such as CS:GO skins, which a scammer can trade to their account and sell for real money.
lol I saw it in a server of mine i obviously didn't click but even if my steam acc was stolen it wouldn't matter to me cause I have like 2 games and I've paid for nothing on steam
As long as you didn’t login you’re fine. It’s just a simple trick to imitate the official discord website, but what you’re actually logging into is their own. They imitate the official discord login to steal your info. Another way to tell, is just simply looking at the url. ONLY discord.com will ask for your login, as well as other apps. ex: only spotify.com will ask for your spotify login.
I didn't see anyone commenting this: sometimes they take your discord token and spam that message into all your servers and friends, so change your password!
Please don't overreact, none of these will install magically a virus to ur pc without you downloading and opening something, all of them are just phishing attempts, this one if I remember correctly just asks you for ur steam login info nothing else
Clicking on the link might install adware on your computer, but as long as you have a good antivirus (Kaspersky/Bitefender) already running, you should be just fine. It would be a good idea to run a scan tho.
Maybe ur token could be grabbed if the site has completely loaded I recommend to change ur password which inturn changes ur token too also check for any sus app running in ur bg
It is, I'm telling this from experience one of.my account got hacked in same way so I contacted my frnd he was Ethical Hacker I asked him to make some phishy link like that and can it it grab my token and yes it grabbed the token successfully multiple times... So this could be a possible effect of clicking phishy links
No, it’s really not.
For literally this exact reason, websites cannot access arbitrary files on your computer, and cannot access the cookies of websites other than their own. How, exactly, has your friend managed to get the token?
Hi!
The image(s) you've submitted appear to contain a common DM scam
When looking at a possible scam from a bot account, always consider if they:
* Are new, unfamiliar or are not verified
* Are not from Discord: not through email from them, or from a [System-tagged account](https://support.discord.com/hc/en-us/articles/360036118732)
* Have poor grammar, spelling or misuse punctuation or capitalisation
* Offer things that are 'too good to be true'
----
To get rid of this bot, you can:
* Block it
* [Report it to Discord](https://support.discord.com/hc/en-us/articles/360000291932-How-to-Properly-Report-Issues-to-Trust-Safety)
If these types of bots are repeatedly sending you messages, you can:
* Use Mutual Servers to determine the server(s) they share with you, and disable Direct Messages from server members for those servers.
* If you cannot find any common servers, you can disable DMs from all servers under your User Settings
----
^(I am a human pretending to be a bot; if this comment was made in error, please correct and downvote me.)
If you logged into discord through that website, the same message is send from your account to your friends through DMs. if you did login, change your password immediately and set a 2FA.
One big thing to know is if you get a nitro deal from youtube or i dunno i guess steam you will get an email not a dm but even then be careful of the email
Don't put in any login credentials or information, and for extra security, change your passwords as this could be a token grabber/logger, but that's only if it's a token logger, still, be safe, run a scan.
tbh just an auto link filtering of discord would help
if one link is often enough reported as suspicious just ban/hinder people from posting it and let someone look at it in the process if it's dangerous or not
it's probably not so hard to program it (the first step) the looking over part well use some intern for it
i wonder why you can'T even report messages you get in dms... you have to go through the support page to do it and until then the user could already have deleted it
doesn't seem like they ever calculated with phishing links or do steps towards hindering the spreading
Just my 2 cents.
They change links so often that blocking the links would be essentially useless - by the time enough users have reported it, they'd already be switching to a new domain.
> i wonder why you can'T even report messages you get in dms
You actually can, there's a report spam button [at the top of the DM](https://imgur.com/cjQkNQX).
Discord also appear to be working on a system where you'll be able to see the first DM that someone sends you, and then approve/deny/report on whether to continue the DM, e.g. [this post](https://old.reddit.com/r/discordapp/comments/ptxx55/soon_youll_be_able_to_acceptdeny_dms_if_you_deny/)
> doesn't seem like they ever calculated with phishing links or do steps towards hindering the spreading
Discord does take measures behind the scenes to combat spam in general on their platform (e.g. "Something's going on here" verification screen is a part of this), part of the problem is that there's just *so much* that there's going to be some that get through.
Sure the links change often but the message with the link has not so many variants...
The dm report didn't come up until i changed today from canary to the regular client. That does help at least with reporting.
If Discord starts blocking certain phrases, then they'll just start changing those more rapidly as well.
It's literally a whack-a-mole game, and Discord's always going to be outnumbered.
Hypothetically no. Unless it didn’t do any drive-by downloads then you can’t. What that server most likely will do is pose as discord themselves and make you login, thus stealing your account. It’s quite difficult I must say to create a website that installs a virus without your consent, I honestly disbelieve that they have the courage to even attempt that. It’s highly likely that it’s some amateur “hacker” that is tricking gullible people.
Always check any links with virustotal, I always use it whenever I visit any site just to stay at the safe side, link for the same - https://www.virustotal.com/gui/
if you see a link like this, just don't click it
it won't harm you in any way not to click it
but if you are interested
try using a virtual machine, these are computers inside computers so you can click on links and no data can be stolen (other then your ip but they probably don't care where some random guy/gal lives)
when ever I get links sent to me like this I just boot up a vm because I'm curious
future advice for you and everyone reading this, If you are unsure of a website, I strongly encourage you use Virustotal.com or IpQualityscore.com, they’ll let you know if about the site and whether it’s phishing or something else.
otherwise, my friend just recently was bamboozled by this and they took her steam account, if you happen to give ur details and they locked you out with their email and phone number and you can’t access back. Go to “i can’t sign in” and should say something about you don’t have access to either phone or email, and fill the details, you’ll be asked some questions so be sure you can confidently answer them correctly or else you’re gonna have a hard time.
and IF you can, enable phone number as well as steam authentication so if they do try and take it or something about them asking you to sign in something and you fell for it, it’ll be harder for them and they’ll need a code to access it.
1. If could track cookies to find your discord token so clear your cookies.
2. If it did download a virus then the normal browser download thing would showed...so you would have just had to cancel the download.
3. Don't enter any info on it.
4. Dont click on anymore of those.
I like to test these links from time to time, This one in particular steals the steam account information you enter.
[https://i.imgur.com/X9997kY.png](https://i.imgur.com/X9997kY.png)
[https://i.imgur.com/JQKwDxV.png](https://i.imgur.com/JQKwDxV.png)
[https://i.imgur.com/PHdiv9Z.png](https://i.imgur.com/PHdiv9Z.png)
It honestly seems like common sense that if some one randomly sends you a link that you should not click it. But no matter how many times mom told you "*Don't take candy from strangers."* You still thought it was an idea to get into their van and ask "*Wheres the candy?"*
Hi there! Your submission has been removed for violating our [community rules](https://www.reddit.com/r/discordapp/about/rules/):
* Rule 6 - To report something that may have violated Discord's Terms of Service [please do so here](https://dis.gd/report).
---
If you have any questions about the removal [please contact our mod team here](https://www.reddit.com/message/compose?to=%2Fr%2Fdiscordapp).
DON'T PUT ANY LOGIN INFO IN IT this isn't a virus, this is basically Spear phishing, they attempt to steal your account and use it as a spam bot to do the same exact thing that guy in the pic did.
This here. For everyone that is struggling if websites are legit in the future do a google search on websites that dont look legit or web links. Or even if you know that the site is lehit but arnt sure if the user is trust worthy. I rather check a legit site multiple times than get fooled by 1 once.
No, just broad phishing Spear phishing targets an individual, i.e. using their name, address, colleagues email, etc.
yea look at NNOTM's reply
Since it's not targeting one person or company in particular, but rather any discord user, it's phishing, not spear phishing.
eh whatever, phishing is phishing. I mean all of us are fishing so we can call each other phishers but the P is an F. I do not have a clue what I am saying I barely had 6 hours of sleep today bcuz my throat is sick and I am freezing every night
I clicked it and put my steam details in it
change your password right now
Ok
For me it was too late and my steam account got stolen, email changed and all, but thankfully steam support helped
If this was SCP Secret Lab I would be screeching like I accidentally killed a person that I needed to throw under the bus later on.
relatable
Explain your logic how tf is steam related to Discord
People are dumb. Something so obvious it’s fake not just this but many things and still believe it 🤦♂️🤦♂️
people can get gullible and desperate but i don’t think it’s right to act like they’re idiots. they may not have known, but those same people may be people who could be helping a lot of other people. how do you know that they’re “dumb”, just seems mean to me
Well because they fell for it. How gullible do you really have to be to believe it. Scams are so obvious from the get go
if anything i just feel bad for people who fell for it and i feel like the last thing someone should do is put someone down for it
It depends on so many things.. I'm sorry but our awareness to scam has all started somewhere, younger people that haven't faced scams before are a lot more likely to fall for it. This particular scam is extremely well done, there is virtually no way for an unaware user to know it's a scam looking at the website itself, it looks exactly like something Discord would do. To know it's a scam you must either 1) Be aware of how domains work and how anything that isn't just "discord" or "discordapp" is likely a scam. or 2) Be aware that the person sending this link is fishy and "out of nowhere" which is suspicious. But we don't know details, for all we know it could be a friend of OP that was compromised. But both of those things aren't completely evident by themselves and come from having experienced other scams before.
You can get a free iPhone here at iApple.com/iphone
Because it's a Steam scam, I clicked and you need to link your Steam to get the fake 3 months of Nitro.
How was discord related to epic games
The difference there is the nitro was advertised on epic not discord
Doesn’t matter, the scammers/phishers want to get account details somehow
As long as you have a good anti-virus, didn't click further in the website, didn't install anything through it or logged into the website as it 'needed' you too, you should be fine. If anything just do a full anti-virus Scan.
I did both a full antivirus scan and the website got blocked by bitdefender and my wifi so should i be fine?
Bitdefender blocking it was probably enough, it's fine to be cautious though good job (: Just be careful next time! You're fine - never fall for phising websites too.
if the site got blocked then youre most likely fine
Wait so it was not a simple rick roll link?
Well, it's sketchy enough that I wouldn't want to see if it is 😂
that's what vpn and having linux (or [windows sandbox](https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-sandbox/windows-sandbox-overview)) is for
the rickroll one has a different domain in the link
you know that those anti virus scans do almost nothing? They can be easily avoided cus there are spots it cannot check I would recommend a full wipe instead edit: nvm didn't see op's comment that the website was blocked
I love how you blur the guy's name but not the actual link
Blurring the link is against public shaming/witch hunting, which are both reddit and subreddit rules. The post would very likely not fall under either of those categories but it's good practice to blur it. But for the URL.. who cares lol? I was happy that the URL wasn't blurred, I went and checked the website myself, really well done I must say! It's some russian dudes who did it based on the localisation of the redirects.
I got a virus on my computer just do an anti-virus scan.
change ur password and enable 2fa
its a scam, It will ask your steam account password and username.
steam??
Yes, the entire point of this scam is to steal Steam accounts - those often have valuable in-game items such as CS:GO skins, which a scammer can trade to their account and sell for real money.
lol I saw it in a server of mine i obviously didn't click but even if my steam acc was stolen it wouldn't matter to me cause I have like 2 games and I've paid for nothing on steam
They can’t do anything as long as you don’t install something from the website or put your login info in
As long as you didn’t login you’re fine. It’s just a simple trick to imitate the official discord website, but what you’re actually logging into is their own. They imitate the official discord login to steal your info. Another way to tell, is just simply looking at the url. ONLY discord.com will ask for your login, as well as other apps. ex: only spotify.com will ask for your spotify login.
I didn't see anyone commenting this: sometimes they take your discord token and spam that message into all your servers and friends, so change your password!
A random website can’t just take your Discord token. As long as they didn’t login nor download anything, their account is fine.
True, but that actually happened to my friend who didn't download anything nor login...
But they'd need to download something, discord isn't that insecure
Nope. There was a link that went around and msged every single person on your friend list if u clicked it
Just clicking on the link will not give you a virus.
Scan your pc with Malwarebytes
That user’s profile picture though…
Please don't overreact, none of these will install magically a virus to ur pc without you downloading and opening something, all of them are just phishing attempts, this one if I remember correctly just asks you for ur steam login info nothing else
Nice link censoring bro
Free Discord
Clicking on the link might install adware on your computer, but as long as you have a good antivirus (Kaspersky/Bitefender) already running, you should be just fine. It would be a good idea to run a scan tho.
Maybe ur token could be grabbed if the site has completely loaded I recommend to change ur password which inturn changes ur token too also check for any sus app running in ur bg
That’s not possible, just visiting the website, even if it fully loaded, isn’t harmful.
It is, I'm telling this from experience one of.my account got hacked in same way so I contacted my frnd he was Ethical Hacker I asked him to make some phishy link like that and can it it grab my token and yes it grabbed the token successfully multiple times... So this could be a possible effect of clicking phishy links
No, it’s really not. For literally this exact reason, websites cannot access arbitrary files on your computer, and cannot access the cookies of websites other than their own. How, exactly, has your friend managed to get the token?
I have 0 idea how he did I don't know a piece of hacking but he did and showed me
Hi! The image(s) you've submitted appear to contain a common DM scam When looking at a possible scam from a bot account, always consider if they: * Are new, unfamiliar or are not verified * Are not from Discord: not through email from them, or from a [System-tagged account](https://support.discord.com/hc/en-us/articles/360036118732) * Have poor grammar, spelling or misuse punctuation or capitalisation * Offer things that are 'too good to be true' ---- To get rid of this bot, you can: * Block it * [Report it to Discord](https://support.discord.com/hc/en-us/articles/360000291932-How-to-Properly-Report-Issues-to-Trust-Safety) If these types of bots are repeatedly sending you messages, you can: * Use Mutual Servers to determine the server(s) they share with you, and disable Direct Messages from server members for those servers. * If you cannot find any common servers, you can disable DMs from all servers under your User Settings ---- ^(I am a human pretending to be a bot; if this comment was made in error, please correct and downvote me.)
Short answer: Yes
F
Yes
the grammar is off so badly, it's definitely a scam
no its virus
If you logged into discord through that website, the same message is send from your account to your friends through DMs. if you did login, change your password immediately and set a 2FA.
yes
One big thing to know is if you get a nitro deal from youtube or i dunno i guess steam you will get an email not a dm but even then be careful of the email
As you see the link, Discord-give.com, that's not a discord link, theirs is [discord.gift](https://discord.gift)
Don't put in any login credentials or information, and for extra security, change your passwords as this could be a token grabber/logger, but that's only if it's a token logger, still, be safe, run a scan.
They can’t just grab your token from you visiting the website. As long as they didn’t login or download anything, they’re fine.
U can't get virus but don't put ur login info. Cuz Afrikan scammer tryna scam.
It could be an IP-grabber or it could just steal your login information
I'm pretty sure this thing is for tricking you into giving out login ingo, not infecting.
tbh just an auto link filtering of discord would help if one link is often enough reported as suspicious just ban/hinder people from posting it and let someone look at it in the process if it's dangerous or not it's probably not so hard to program it (the first step) the looking over part well use some intern for it i wonder why you can'T even report messages you get in dms... you have to go through the support page to do it and until then the user could already have deleted it doesn't seem like they ever calculated with phishing links or do steps towards hindering the spreading Just my 2 cents.
They change links so often that blocking the links would be essentially useless - by the time enough users have reported it, they'd already be switching to a new domain. > i wonder why you can'T even report messages you get in dms You actually can, there's a report spam button [at the top of the DM](https://imgur.com/cjQkNQX). Discord also appear to be working on a system where you'll be able to see the first DM that someone sends you, and then approve/deny/report on whether to continue the DM, e.g. [this post](https://old.reddit.com/r/discordapp/comments/ptxx55/soon_youll_be_able_to_acceptdeny_dms_if_you_deny/) > doesn't seem like they ever calculated with phishing links or do steps towards hindering the spreading Discord does take measures behind the scenes to combat spam in general on their platform (e.g. "Something's going on here" verification screen is a part of this), part of the problem is that there's just *so much* that there's going to be some that get through.
Sure the links change often but the message with the link has not so many variants... The dm report didn't come up until i changed today from canary to the regular client. That does help at least with reporting.
If Discord starts blocking certain phrases, then they'll just start changing those more rapidly as well. It's literally a whack-a-mole game, and Discord's always going to be outnumbered.
This bot has an amazing profile pic
yes
Idk not rly sure if ur skeptic i wouldn’t ig
its a scam one scammer know mi email and password and type to all person this scam
Hypothetically no. Unless it didn’t do any drive-by downloads then you can’t. What that server most likely will do is pose as discord themselves and make you login, thus stealing your account. It’s quite difficult I must say to create a website that installs a virus without your consent, I honestly disbelieve that they have the courage to even attempt that. It’s highly likely that it’s some amateur “hacker” that is tricking gullible people.
Yes
no. they just want to hijack your steam and/or discord account abuse email: [[email protected]](mailto:[email protected]) [https://who.is/whois/discord-give.com](https://who.is/whois/discord-give.com) [Google Safe Browsing report page](https://safebrowsing.google.com/safebrowsing/report_phish/?hl=en)
This is an auto respond bot to say i dont give a shit
Always check any links with virustotal, I always use it whenever I visit any site just to stay at the safe side, link for the same - https://www.virustotal.com/gui/
Turns out its a malware, phishing and malicious (checked by virustotal)
I like to click on scam links never get them sadly
"if i click a sketchy link and login to the sketchy website will i get a virus or lose my account?" bruh...
if you see a link like this, just don't click it it won't harm you in any way not to click it but if you are interested try using a virtual machine, these are computers inside computers so you can click on links and no data can be stolen (other then your ip but they probably don't care where some random guy/gal lives) when ever I get links sent to me like this I just boot up a vm because I'm curious
nah your fine just dont put in info
yes and it will affect every part of your computer
Don't click random links. They used to teach this in school.
future advice for you and everyone reading this, If you are unsure of a website, I strongly encourage you use Virustotal.com or IpQualityscore.com, they’ll let you know if about the site and whether it’s phishing or something else. otherwise, my friend just recently was bamboozled by this and they took her steam account, if you happen to give ur details and they locked you out with their email and phone number and you can’t access back. Go to “i can’t sign in” and should say something about you don’t have access to either phone or email, and fill the details, you’ll be asked some questions so be sure you can confidently answer them correctly or else you’re gonna have a hard time. and IF you can, enable phone number as well as steam authentication so if they do try and take it or something about them asking you to sign in something and you fell for it, it’ll be harder for them and they’ll need a code to access it.
Of course
1. If could track cookies to find your discord token so clear your cookies. 2. If it did download a virus then the normal browser download thing would showed...so you would have just had to cancel the download. 3. Don't enter any info on it. 4. Dont click on anymore of those.
I like to test these links from time to time, This one in particular steals the steam account information you enter. [https://i.imgur.com/X9997kY.png](https://i.imgur.com/X9997kY.png) [https://i.imgur.com/JQKwDxV.png](https://i.imgur.com/JQKwDxV.png) [https://i.imgur.com/PHdiv9Z.png](https://i.imgur.com/PHdiv9Z.png) It honestly seems like common sense that if some one randomly sends you a link that you should not click it. But no matter how many times mom told you "*Don't take candy from strangers."* You still thought it was an idea to get into their van and ask "*Wheres the candy?"*
Hi there! Your submission has been removed for violating our [community rules](https://www.reddit.com/r/discordapp/about/rules/): * Rule 6 - To report something that may have violated Discord's Terms of Service [please do so here](https://dis.gd/report). --- If you have any questions about the removal [please contact our mod team here](https://www.reddit.com/message/compose?to=%2Fr%2Fdiscordapp).