Skip to content

PSA: Malware Browser Extensions are a Scam!

Malware browser extensions have become very frequent in the past month, with customers installing extensions on their browsers that claim the extension will “help them get better deals” or “check if the item is safe to trade.” THESE ARE SCAMS, AND YOU WILL LOSE ALL YOUR ITEMS IF YOU DOWNLOAD THEM!

Picture this scenario: while playing on Steam, a random user contacts you saying that he’s interested in that M9 Doppler or those other six valuable skins in your inventory. He asks you to install a plugin on your browser that checks to see if the items in your inventory were stolen. You follow his instructions because, why not?

But you realize that after you “sold” your item after listing it on OPSkins via the extension, you don’t have any funds from the sale. The plugin that you installed on your browser was malware that allowed the user to take all your skins.

These extensions have full control over the OPSkins website on your computer, so they can do malicious things like intercepting requests to our servers to send you a trade offer, which they can replace with a request to their own server. In turn, this causes a fake bot to send a trade offer, which looks identical to a real OPSkins trade offer.

Just because an extension is on the official Chrome store doesn’t always mean it’s safe; anyone has the ability to submit an extension to the Chrome store.  Only install established, trusted extensions, and never install anything that someone on Steam asks you to install before they will trade with you.

We continue to report these plugins to Google for abuse, but they either aren’t removed or more crop up everyday. We’ve notified the community through our homepage, Reddit, and Twitter.

Warning on OPSkins homepage

Some examples of names used by these malware extensions are:

  • OPSHelper Update
  • OPSkins Helper
  • Phishing Inventory Checker
  • External Prices
  • Opskins Inventory Checker
  • Items Guardian
  • Skins Status Helper
  • Item Stolen Checker

(This isn’t an extensive list by any means, it just serves as an example of some of the names of the malicious extensions we’ve found in the past.)

This malware extension is just one of a few common scams out there targeting OPSkins users, which are detailed on this stickied Reddit post (which is also linked to on our homepage).

You should never run any form of software, whether it be an executable file or a browser extension, from an untrusted source. Last but not least, if someone is offering you something that sounds too good to be true, it’s probably too good to be true.

If you know of any other extensions that you think could be used for scams, post them on our comments and we will look into them. We want to protect our customers as best we can from fraud and one of the best ways to do it is by identifying the different ways scammers go about tricking our customers, banning and reporting them.

Share:
Published inOPSkinsSkinsSkins Economy

Recent Posts

Archives

Categories

8 Comments

  1. i got scammed! i whould love to get help to get my items back, i come from a poor family, and i hoped to sell for items i really need, i got scammed for items around 80 $. i have link to both of the scammers who scammed me:( http://steamcommunity.com/profiles/76561198294894803
    http://steamcommunity.com/id/123123132132321321321321

    my items are on the first account, its the MW, AWP MAN-O-WAR
    AK-47 Jaguar.
    m4a4 cyrex and flipknife ultraviolet, im hart ruined. this is the worst ting ever happend top me in my hole life…

    • btw it was Phishing Inventory Checker who took ma items!

  2. remarks remarks

    hmmm, my Huntsman Night was scammed for by a program called Steam Inventory Checker v2.3 / rip my heart, im forever scarred due to the fact that i bought this with my own money.

    how stupid can i be though, what the fuck was i thinking, it seems so legit though :/

  3. Axel Axel

    Another one to add to the list: !!!! trade defender !!!!!!!, chrome extention. made by: TFCorporation
    rip knife…. even though I deinstalled it before trading my knife to the site… it seem to be linked to some kind of bot.. http://steamcommunity.com/profiles/76561198293723431

    • Arielle Arielle

      Please make a support ticket under “item issues” with the information and they’ll ban the account

  4. Almost success trade scam.

    https://chrome.google.com/webstore/detail/dr/kbajihpepmmaodcnfdepamipbmmlliod Stupid Malware Browser Extensions

    http://steamcommunity.com/profiles/76561198110214280/
    Stupid Scamer, talks good english but is russian.

    Be aware! Tried to send you money on the site first, but when you try to buy something it says that you need to fill up your wallet, meanwhile you have aprox 80 $. When I asked him he said that its a frozen time after sending cash and then when he took them out tryed to blame me and ask me for the money back since hi did not get any knife lol!
    Good luck and be smart!

Leave a Reply

Your email address will not be published. Required fields are marked *