Steam: accounts’ info leaked
Do you really think that your Steam account is safe? Unfortunately, besides possible problems due to our actions, there can also be more caused by the software itself. Yesterday SteamDB alerted all users that Valve is having caching issues, allowing users to view account information of other users. They pointed out to not attempt to unlink PayPal, remove your credit card details or anything else. In fact, doing so will put you at a greater risk due to the caching problems.
Once again, unlinking your PayPal account from Steam via the PayPal site alone is fine. Unlinking through Steam is NOT.— Steam Database (@SteamDB) December 25, 2015
The panic spread over forums and socials- of course, everyone was worried about their personal info and credit cards numbers. KillahInstinct, a steam community mod, finally provided some official information on the situation:
“We've gotten reports that people sometimes see other people's account information on the account page. Valve has been made aware of this and are working on a fix.”
Valve reacted promptly, completely resolving the situation on December 25th at about 24:00 CET.
- Steam is not hacked
- Credit Cards info and phone numbers are, as required by law, censored and not visible to users
"Steam is back up and running without any known issues. As a result of a configuration change earlier today, a caching issue allowed some users to randomly see pages generated for other users for a period of less than an hour. This issue has since been resolved. We believe no unauthorized actions were allowed on accounts beyond the viewing of cached page information and no additional action is required by users."
In the past months, Valve pushed hard for two factor authentication in order to protect our accounts, now this massive security breach has definitely harmed our trust in their actions. Fortunately, it seems that no real damage has been caused.
Skulz 26 December 2015, 20:00 3141 0