Steam Users' Credit Cards and Other Information Accessed in Database Hack

StayStatic4039d ago

Indeed , will probably never here the end of this now.

Agree 5 Disagree 0

ABizzel14039d ago

All hackers should executed. Recently hackers hacked over 4 million people a organizations including governments across the globe. Start whacking them off, and I'm sure we'll see a decline of the activity.

Agree 1 Disagree 4

Rage_S904039d ago

ShowReplies(3)

dark-hollow4039d ago

ShowReplies(2)

MaximusPrime4039d ago

Every companies are not safe. I feel for those Steam members

Agree 15 Disagree 0

Altourus4039d ago

FFS my bank just sent me a new credit card number because of the Sony hack.

Agree 12 Disagree 2

dead_eye4039d ago

get a new bank cos that took fucking ages

Agree 20 Disagree 0

Abriael4039d ago

gabe's mail was NOT very clear. First he says both forums and steam itself were hacked. Then he says just the forums. What the hell?

Agree 3 Disagree 0

TheIneffableBob4039d ago (Edited 4039d ago )

No, he said that both the Steam forums and a Steam database were compromised. Encrypted info was taken but they cannot confirm if that encrypted info was cracked or not (very unlikely to be cracked since the encryption is very strong). Also, with Steam Guard in place, to even get access to your Steam account would require that the hackers also gain access to your e-mail. They would have to crack the encrypted passwords which would take a long time, then they would have to hope that that password is the same as your e-mail password, and if it isn't then they would have to find that.

Basically, I wouldn't worry too much about your accounts being in jeopardy or whatever. It's unlikely for anything to happen.

Gabe did confirm that a couple forum accounts were compromised, however, which means that the hackers were able to get the username and passwords of forums accounts and log in with them.

Agree 7 Disagree 1

Ocelot5254039d ago (Edited 4039d ago )

"(very unlikely to be cracked since the encryption is very strong)"

1. Everything can be decrypted with brute force. It only takes some time.

2. the passwords were not encrypted, they were hashed , big difference.
Many forums have the passwords hashed in MD5, which can be unhashed in mere seconds trough a flaw in that algorithm which was only discovered recently.

The industry is moving towards the SHA-algorithm for hashing passwords, but most forums still use MD5 because It's too much work too change.

source: me , I develop web-applications

Agree 4 Disagree 0

TheIneffableBob4039d ago

Rereading the message, it doesn't look like it says anything about how the forum passwords were protected, but the database Steam account passwords were hashed and salted which makes them nigh impossible to crack assuming the protection used is strong enough. It could be cracked with brute force but it would take an unreasonably long time. I'm gonna assume that the protection used on the credit card info is even stronger.

Cosmit4039d ago

Oh crap. I have my info on there! >:[

Agree 9 Disagree 0

nightmarex1214039d ago

Damn that sucks

Agree 1 Disagree 0

Shackdaddy8364039d ago

This is why I un-check that little box that says "save credit card info" when buying things

Agree 7 Disagree 0

SKUD4039d ago (Edited 4039d ago )

Wither your shopping on or offline keeping tabs on your credit report / banks statements are very important. Report anything that looks suspicious. Its the only real way to protect yourself. Don't rely on ANY website to protect your data.

Agree 3 Disagree 0

yesmynameissumo4039d ago

ShowReplies(2)

solar4039d ago

monitor all your stuff kiddies. im changing my pw now for Steam and hope everyone does the same.

Agree 6 Disagree 0

Deadman_Senji4039d ago

ShowReplies(3)

OC_MurphysLaw4039d ago

Man, this has to be such a gut shot to Valve. They were riding such a high wave, Steam was looking unstoppable...hopefully they caught on in time but I fear this is going to blow up more.

Sarobi4039d ago

Great.. now as punishment they'll delay HL3 even longer.

Agree 4 Disagree 1

JsonHenry4039d ago

Well, changed my password and hoping they didn't/can't break the encryption for my credit card info.

Satish134039d ago

is it bad that I lolled when i read the title? it just so happens i don't use a credit card with my PS3 and dodged that bullet a while ago, but I also don't use one with Steam, I just didn't see Steam as a target. well this'll be interesting.

Agree 1 Disagree 0

Ddouble4039d ago (Edited 4039d ago )

Something tells me the reactions to this will be far different to that of when Sony got hacked.

Still lets focus the blame on the hackers themselves.

Agree 3 Disagree 1

BrianC62344039d ago

Wait, didn't this story first pop up a couple weeks ago? If so I think Sony was much quicker at letting their customers know what happened.

Bladesfist4039d ago

nope happened a few days ago

maniacmayhem4039d ago

That sucks...

You know its better to have a secured credit card up to say just 200 bux and just use this for gaming across all platforms.

Anyways, i hate to hear when this happens.

Agree 0 Disagree 0

Organization XII4039d ago

yeah mine i limit it to 100 bucks and i never keep the info saved. oh well

Agree 0 Disagree 0

geddesmond4039d ago

ShowReplies(2)

jeezuz4039d ago

how do you change your steam username and password? sorry about the noob question I've just never done it before

yesmynameissumo4039d ago

Using the Steam client: View->Settings->Change Password or Secret question.

If you do it via the website, login and click My Account.

Shackdaddy8364039d ago

Go to the main steam page

Click on the "Steam"button on the top left corner. This should open up a drop down menu

Then select "settings". This should open up a separate settings window.

Click the "change password or secret question..." button in the account tab.

Bladesfist4039d ago

On the steam client. Go to Steam > Settings > Change Password. Hope I helped, Darn hackers

Emilio_Estevez4039d ago

That is not good.

Moragami4039d ago

It was Origin. Everybody knows that Origin is Steam's evil twin.

Megaton4039d ago (Edited 4039d ago )

lol @ "IndustryGamers just received the following letter from Valve's Gabe Newell". You make it sound so hush hush insider.

Everyone logging into Steam "just received the following letter from Valve's Gabe Newell".

GraveLord4039d ago

No one is safe from hackers.
Is Microsofts Xbox Live next?

rattletop4039d ago

that's bad. but anyhow i haven't bought anything from steam yet, cos i prefer disc.

Agree 1 Disagree 0

Somebody4039d ago

This is why permanent online DRM is a bad idea.

Online accounts are too susceptible to attacks no matter what security measure they use. A good balance of online support with offline play is the key. Anchoring a whole game to an online connection is just asking for trouble. The moment a server is attacked/ or shut down for maintenance, gamers can't play the singleplayer. The more damage done, the longer the gamers suffer.

Look at Steam. It's under attack but I'm still able to play games with it's offline mode (I keep them offline all the time, going online every week to get updates only- as if anticipating this attack). Wonder how Diablo 3 and STALKER 2 will perform if their servers are attacked. Sure they can add better system but that usually means additional cost will be added.

4039d ago

just_looken4038d ago

The forums now just have the message nothing else fuck i heard of this attack but never knew it was this bad.
http://forums.steamgames.co...

Ill be changing my details asap.