Sign in with
Sign up | Sign in

Steam's Database Hacked, Info Possibly Stolen

By - Source: Tom's Hardware US | B 5 comments

Sunday Valve's Steam platform was accessed by hackers who may have run off with the personal information of all registered users, including credit card numbers.

Valve Software's Gabe Newell sent out a message to all Steam users around an hour ago warning about a hack into the database and the possible theft of personal information. Here's the entire message:

Our Steam forums were defaced on the evening of Sunday, November 6. We began investigating and found that the intrusion goes beyond the Steam forums.

We learned that intruders obtained access to a Steam database in addition to the forums. This database contained information including user names, hashed and salted passwords, game purchases, email addresses, billing addresses and encrypted credit card information. We do not have evidence that encrypted credit card numbers or personally identifying information were taken by the intruders, or that the protection on credit card numbers or passwords was cracked. We are still investigating.

We don't have evidence of credit card misuse at this time. Nonetheless you should watch your credit card activity and statements closely.

While we only know of a few forum accounts that have been compromised, all forum users will be required to change their passwords the next time they login. If you have used your Steam forum password on other accounts you should change those passwords as well.

We do not know of any compromised Steam accounts, so we are not planning to force a change of Steam account passwords (which are separate from forum passwords). However, it wouldn't be a bad idea to change that as well, especially if it is the same as your Steam forum account password.

We will reopen the forums as soon as we can.

I am truly sorry this happened, and I apologize for the inconvenience.

Gabe.

Display 5 Comments.
This thread is closed for comments
  • 0 Hide
    Anonymous , 11 November 2011 14:21
    Does this affect UK/European users? I have not recieved any email from steam.
  • 0 Hide
    joedastudd , 11 November 2011 15:55
    Not good at all.
    Luckily I've used Paypal instead of cards on steam for the last few years.
  • 0 Hide
    davidgermain , 11 November 2011 17:07
    aa@hotmailcomDoes this affect UK/European users? I have not recieved any email from steam.
    - i would change your passwords anyway, if the hack is possible in one place expect it to be possible somewhere else.
    my guess would be the same security is used all across the stream system so its all vulnerable.
  • 0 Hide
    flaminggerbil , 11 November 2011 17:34
    JoeDaStuddNot good at all.Luckily I've used Paypal instead of cards on steam for the last few years.

    Likewise, good ol' paypal, you save me so much grief.
    aa@hotmailcomDoes this affect UK/European users? I have not recieved any email from steam.

    Next time you log in to the client or forums it'll come up with a screen with Gabe's statement, so looks like it's a global thing.
  • 0 Hide
    duffymoon , 11 November 2011 19:25
    Bit of luck - my Egg credit card expired on 6 November after Egg was bought by Barclaycard. I will certainly think twice about the credit limit on the replacement card I use.