Steam Sheriff

Checks URLs visited by user to help prevent Steam phishing attacks

Download

Extension stats

This extension was removed from Chrome Web Store on 2023-01-20

By: zma4580

Users: 34

Rating: 1.00 (1)

Version: 0.3 (Last updated: 2015-08-06)

Creation date: 2015-08-06

Risk impact: High risk impact

Risk likelihood: High risk likelihood

Manifest version: 2

Permissions:

webRequest
<all_urls>
webRequestBlocking

Size: 158.72K

Other platforms

Not available on Firefox

Not available on Edge

Want to check extension ranking and stats more quickly for other Chrome extensions? Install Chrome-Stats extension to view Chrome-Stats data as you browse the Chrome Web Store.

Extension summary

Analyze keywords

Steam Sheriff helps gamers using the Steam platform by checking URLs as they are visited to see if they are potentially impersonating a 'brand'.

Malware/Phishing actors make websites that closely resemble a 'brand'. For example, the legitimate Steam website is www.steamcommunity.com. Phishers leverage 'homograph' attacks to trick you to clicking a URL that you think you trust. So, st3amcommunity.com or steamcomunity.com might look legitimate to a human, but very different for a computer.

In order to detect these attacks, Steam Sheriff uses a combination of techniques to find out the 'similarity' of a target compared to a white list. This whitelist are common websites collected from feedback from the community that have also been used in attacks in the past. The list is as follows:

'gyazo.com', 'flickr.com', 'imgur.com', 'photobucket.com', 'tinypic.com', 'dota2lounge.com', 'csgolounge.com', 'steamcommunity.com', 'csgoticket.com',