• Credit card details compromised in Steam hack

    Published on 11-11-11 at 11:40 AM AEST by
    rec
    Steam has been hacked and it has been disclosed that credit card numbers and other personal information may have been put at risk. Valve know that the hackers gained access to the encrypted database with this information, but are currently unable to ascertain if this database was lifted or if they will be able to break the encryption.

    This comes just days after the Steam forums were taken offline, the cause of which is believed to be an exploit in the old version of vBulletin that was being run. The full statement from Valve's Gabe Newell can be read below.

    "Dear Steam Users and Steam Forum Users,

    "Our Steam forums were defaced on the evening of Sunday, November 6. We began investigating and found that the intrusion goes beyond the Steam forums.

    "We learned that intruders obtained access to a Steam database in addition to the forums. This database contained information including user names, hashed and salted passwords, game purchases, email addresses, billing addresses and encrypted credit card information. We do not have evidence that encrypted credit card numbers or personally identifying information were taken by the intruders, or that the protection on credit card numbers or passwords was cracked. We are still investigating.

    "We don’t have evidence of credit card misuse at this time. Nonetheless you should watch your credit card activity and statements closely.

    "While we only know of a few forum accounts that have been compromised, all forum users will be required to change their passwords the next time they login. If you have used your Steam forum password on other accounts you should change those passwords as well.

    "We do not know of any compromised Steam accounts, so we are not planning to force a change of Steam account passwords (which are separate from forum passwords). However, it wouldn’t be a bad idea to change that as well, especially if it is the same as your Steam forum account password.

    "We will reopen the forums as soon as we can.

    "I am truly sorry this happened, and I apologize for the inconvenience.

    "Gabe."
    1. Categories:
    2. Hardware and Industry

    Comments 6 Comments
    1. BrAiN DaNcE's Avatar
      BrAiN DaNcE - 11-11-11, 11:57 AM
      Less hyperbole please rec, CC details were taken, but all still encrypted, so they aren't compromised.
    1. Harbinger's Avatar
      Harbinger - 11-11-11, 12:53 PM
      Fuck
    1. rec's Avatar
      rec - 11-11-11, 02:51 PM
      It was totally someone who works for EA's Origin.
    1. Aegis's Avatar
      Aegis - 11-11-11, 03:04 PM
      damn, same thoughts as rec, this is not good.
    1. feary's Avatar
      feary - 11-11-11, 03:54 PM
      So this is why it is taking them so long to make battelog to work...

      Quote Originally Posted by rec View Post
      It was totally someone who works for EA's Origin.
    1. grandinferno's Avatar
      grandinferno - 11-11-11, 10:20 PM
      This is exactly why I have one of those debit Mastercards with no more than a few bucks on it. I just throw money on it when I'm going to buy something. So when stuff like this happens I really don't give a shit.
    Comments Leave Comment (Will be published after moderation, if you're not a registered user)

    Write 'Human', if you are one.

  • as
  • ..
    ..
  • as