Counter-Strike 2 gamers warned about rising scam threats

Bitdefender Labs has issued a warning to the Counter-Strike 2 (CS2) community regarding scammers who are exploiting key esports events like IEM Katowice 2025 and PGL Cluj-Napoca 2025 to defraud unsuspecting gamers through a series of complex scams.

Cybercriminals have been found to be hijacking YouTube accounts to impersonate well-known professional Counter-Strike players such as s1mple, NiKo, and donk. The scammers are running fraudulent CS2 skin giveaways through these accounts, leading to stolen Steam accounts, cryptocurrency theft, and the loss of valuable in-game items.

According to Bitdefender Labs researcher Ionuț Băltăriu, the scam follows a specific pattern. Scammers initially compromise YouTube accounts with existing subscriber bases and remove original branding or videos.

They then rebrand the channel to impersonate popular CS2 players, using well-known names and looping old gameplay footage to simulate livestreams.

During these fake livestreams, a QR code or fraudulent link is displayed, directing viewers to external sites that falsely promise either free CS2 skins or cryptocurrency in return for engaging with the platform. Victims may be prompted to log in with their Steam account or send cryptocurrencies to designated wallets under false pretences.

Băltăriu explained that once the login credentials are entered, scammers gain access to and eventually steal valuable digital assets.

Similarly, any cryptocurrencies sent to purportedly secure double returns are immediately transferred to wallets controlled by the fraudsters.

The scams are further legitimised by fake posts in the community tab and restricted comments that only display misleading messages crafted by the scammers themselves.

Alongside Steam account hijackings, the scam also exploits crypto-doubling schemes. Victims are misled into sending Bitcoin or Ethereum with the lure of falsely promising double returns, using fraudulent sites that claim associations with known brands such as CS.MONEY or pro player sponsorships.

Key red flags for gamers include claims of doubling or tripling crypto deposits, requests for initial crypto contributions to join giveaways, and unverifiable connections to legitimate esports teams or organisers.

The scams are generally launched during high-traffic tournaments to maximise exposure. IEM Katowice 2025 and PGL Cluj-Napoca 2025 are identified as major events where these scams are gaining traction.

To protect themselves, gamers are advised to verify YouTube channel legitimacy, avoid interacting with suspicious links, and be sceptical of offers that seem too good to be true. Enabling security features like Steam Guard and Multi-Factor Authentication is also recommended alongside regular monitoring of login activities.

Bitdefender's tools such as Scamio and Link Checker can further aid in identifying fraudulent activities.

"Here's what Scamio had to say about one of the giveaway websites we shared," a statement reads, indicating the tool's application in real scenarios to safeguard against fraud.

Additionally, players are encouraged to report any suspicious streams or hacked channels to YouTube and warn others by sharing their experiences in gaming communities and forums.

Gaming content creators are also advised to be cautious, as their channels can be targeted for account takeover, leading to potential revenue losses and fraudulent activities.