Steam Users' Credit Cards and Other Information Accessed in Database Hack

StayStatic3359d ago

Indeed , will probably never here the end of this now.

Agree 5 Disagree 0

ABizzel13359d ago

All hackers should executed. Recently hackers hacked over 4 million people a organizations including governments across the globe. Start whacking them off, and I'm sure we'll see a decline of the activity.

Agree 1 Disagree 4

Rage_S903359d ago

ShowReplies(3)

dark-hollow3359d ago

ShowReplies(2)

MaximusPrime3359d ago

Every companies are not safe. I feel for those Steam members

Agree 15 Disagree 0

Altourus3359d ago

FFS my bank just sent me a new credit card number because of the Sony hack.

Agree 12 Disagree 2

dead_eye3359d ago

get a new bank cos that took fucking ages

Agree 20 Disagree 0

Abriael3359d ago

gabe's mail was NOT very clear. First he says both forums and steam itself were hacked. Then he says just the forums. What the hell?

Agree 3 Disagree 0

TheIneffableBob3359d ago (Edited 3359d ago )

No, he said that both the Steam forums and a Steam database were compromised. Encrypted info was taken but they cannot confirm if that encrypted info was cracked or not (very unlikely to be cracked since the encryption is very strong). Also, with Steam Guard in place, to even get access to your Steam account would require that the hackers also gain access to your e-mail. They would have to crack the encrypted passwords which would take a long time, then they would have to hope that that password is the same as your e-mail password, and if it isn't then they would have to find that.

Basically, I wouldn't worry too much about your accounts being in jeopardy or whatever. It's unlikely for anything to happen.

Gabe did confirm that a couple forum accounts were compromised, however, which means that the hackers were able to get the username and passwords of forums accounts and log in with them.

Agree 7 Disagree 1

Ocelot5253359d ago (Edited 3359d ago )

"(very unlikely to be cracked since the encryption is very strong)"

1. Everything can be decrypted with brute force. It only takes some time.

2. the passwords were not encrypted, they were hashed , big difference.
Many forums have the passwords hashed in MD5, which can be unhashed in mere seconds trough a flaw in that algorithm which was only discovered recently.

The industry is moving towards the SHA-algorithm for hashing passwords, but most forums still use MD5 because It's too much work too change.

source: me , I develop web-applications

Agree 4 Disagree 0

TheIneffableBob3359d ago

Rereading the message, it doesn't look like it says anything about how the forum passwords were protected, but the database Steam account passwords were hashed and salted which makes them nigh impossible to crack assuming the protection used is strong enough. It could be cracked with brute force but it would take an unreasonably long time. I'm gonna assume that the protection used on the credit card info is even stronger.

Cosmit3359d ago

Oh crap. I have my info on there! >:[

Agree 9 Disagree 0

nightmarex1213359d ago

Damn that sucks

Agree 1 Disagree 0

Shackdaddy8363359d ago

This is why I un-check that little box that says "save credit card info" when buying things

Agree 7 Disagree 0

SKUD3359d ago (Edited 3359d ago )

Wither your shopping on or offline keeping tabs on your credit report / banks statements are very important. Report anything that looks suspicious. Its the only real way to protect yourself. Don't rely on ANY website to protect your data.

Agree 3 Disagree 0

yesmynameissumo3359d ago

ShowReplies(2)

solar3359d ago

monitor all your stuff kiddies. im changing my pw now for Steam and hope everyone does the same.

Agree 6 Disagree 0

Deadman_Senji3359d ago

ShowReplies(3)

OC_MurphysLaw3359d ago

Man, this has to be such a gut shot to Valve. They were riding such a high wave, Steam was looking unstoppable...hopefully they caught on in time but I fear this is going to blow up more.

Sarobi3359d ago

Great.. now as punishment they'll delay HL3 even longer.

Agree 4 Disagree 1

JsonHenry3359d ago

Well, changed my password and hoping they didn't/can't break the encryption for my credit card info.

Satish133359d ago

is it bad that I lolled when i read the title? it just so happens i don't use a credit card with my PS3 and dodged that bullet a while ago, but I also don't use one with Steam, I just didn't see Steam as a target. well this'll be interesting.

Agree 1 Disagree 0

Ddouble3359d ago (Edited 3359d ago )

Something tells me the reactions to this will be far different to that of when Sony got hacked.

Still lets focus the blame on the hackers themselves.

Agree 3 Disagree 1

BrianC62343359d ago

Wait, didn't this story first pop up a couple weeks ago? If so I think Sony was much quicker at letting their customers know what happened.

Bladesfist3359d ago

nope happened a few days ago

maniacmayhem3359d ago

That sucks...

You know its better to have a secured credit card up to say just 200 bux and just use this for gaming across all platforms.

Anyways, i hate to hear when this happens.

Agree 0 Disagree 0

Organization XII3359d ago

yeah mine i limit it to 100 bucks and i never keep the info saved. oh well

Agree 0 Disagree 0

geddesmond3359d ago

ShowReplies(2)

jeezuz3359d ago

how do you change your steam username and password? sorry about the noob question I've just never done it before

yesmynameissumo3359d ago

Using the Steam client: View->Settings->Change Password or Secret question.

If you do it via the website, login and click My Account.

Shackdaddy8363359d ago

Go to the main steam page

Click on the "Steam"button on the top left corner. This should open up a drop down menu

Then select "settings". This should open up a separate settings window.

Click the "change password or secret question..." button in the account tab.

Bladesfist3359d ago

On the steam client. Go to Steam > Settings > Change Password. Hope I helped, Darn hackers

Emilio_Estevez3359d ago

That is not good.

Moragami3359d ago

It was Origin. Everybody knows that Origin is Steam's evil twin.

Megaton3359d ago (Edited 3359d ago )

lol @ "IndustryGamers just received the following letter from Valve's Gabe Newell". You make it sound so hush hush insider.

Everyone logging into Steam "just received the following letter from Valve's Gabe Newell".

GraveLord3359d ago

No one is safe from hackers.
Is Microsofts Xbox Live next?

rattletop3359d ago

that's bad. but anyhow i haven't bought anything from steam yet, cos i prefer disc.

Agree 1 Disagree 0

Somebody3359d ago

This is why permanent online DRM is a bad idea.

Online accounts are too susceptible to attacks no matter what security measure they use. A good balance of online support with offline play is the key. Anchoring a whole game to an online connection is just asking for trouble. The moment a server is attacked/ or shut down for maintenance, gamers can't play the singleplayer. The more damage done, the longer the gamers suffer.

Look at Steam. It's under attack but I'm still able to play games with it's offline mode (I keep them offline all the time, going online every week to get updates only- as if anticipating this attack). Wonder how Diablo 3 and STALKER 2 will perform if their servers are attacked. Sure they can add better system but that usually means additional cost will be added.

3359d ago

just_looken3359d ago

The forums now just have the message nothing else fuck i heard of this attack but never knew it was this bad.
http://forums.steamgames.co...

Ill be changing my details asap.