Support NeoGAF

kassatsu · Nov 10, 2011

Just got this email from Valve Press.

Dear Steam Users and Steam Forum Users,

Our Steam forums were defaced on the evening of Sunday, November 6. We began investigating and found that the intrusion goes beyond the Steam forums.

We learned that intruders obtained access to a Steam database in addition to the forums. This database contained information including user names, hashed and salted passwords, game purchases, email addresses, billing addresses and encrypted credit card information. We do not have evidence that encrypted credit card numbers or personally identifying information were taken by the intruders, or that the protection on credit card numbers or passwords was cracked. We are still investigating.

We don't have evidence of credit card misuse at this time. Nonetheless you should watch your credit card activity and statements closely.

While we only know of a few forum accounts that have been compromised, all forum users will be required to change their passwords the next time they login. If you have used your Steam forum password on other accounts you should change those passwords as well.

We do not know of any compromised Steam accounts, so we are not planning to force a change of Steam account passwords (which are separate from forum passwords). However, it wouldn't be a bad idea to change that as well, especially if it is the same as your Steam forum account password.

We will reopen the forums as soon as we can.

I am truly sorry this happened, and I apologize for the inconvenience.

Gabe.

YOU AREN'T GOING TO GET AN EMAIL. YOU WILL RECEIVE THIS LETTER VIA STEAM.

dLMN8R said:
Just to clarify for people once again:

hackers do not have your passwords

hackers do not have your credit card information

Valve properly secured the databases, meaning that hackers cannot do anything with them right now.

Valve has suggested caution in case those secured databases are somehow compromised, but that is highly unlikely, if not impossible, depending on the methods Valve used to encrypt everything.

Lazy Jones · Nov 10, 2011

Great!

spats · Nov 10, 2011

But I thought Steam was unhackable because Valve are the immortal God-Kings of the internet.

markot · Nov 10, 2011

Maybe access to some kind of beta you have going now could make me feel better Gabe ^_^!

Green Biker Dude · Nov 10, 2011

i'm glad i don't keep my cc info in it, but i guess i have to change my password now

they should give us a free game, like, i don't know dota 2? where is my invite gabe?

randomwab · Nov 10, 2011

Let me in to the DOTA2 beta and I will forgive you, Gaben.

Rapstah · Nov 10, 2011

If the forum was compromised, how did they get CC info? Wouldn't that be kept in the Steam account part of things?

MRORANGE · Nov 10, 2011

at least we will get a free game after all this is over

better be hl3

Zzoram · Nov 10, 2011

If I never used the forums, should I be concerned?

OldJadedGamer · Nov 10, 2011

Were they playing Fifa?

BadTaste · Nov 10, 2011

Fuckin hell..

Kyoufu · Nov 10, 2011

Looking forward to 5 free Steam games.

Madrugador · Nov 10, 2011

I never save my credit card information, am i still safe?

italianfreak240 · Nov 10, 2011

It never ends.

FINALBOSS · Nov 10, 2011

They said credit card information was taken...and then go on to say they don't believe credit card numbers were taken. The fuck?

faceless007 · Nov 10, 2011

Really glad I always unchecked the box to remember my CC.

Glix · Nov 10, 2011

Are we sure its legit and not a phishing email? Is there some kind of bogus link to then log in and change your info?

(I have not recieved one yet and I am a frequent steam user, please give us more details on the sending address, etc)

Striek · Nov 10, 2011

Shiiiiiiiet. I haven't gotten this email yet but goddamn, how annoying.

AtomHeart · Nov 10, 2011

Glad I never let Steam remember my information.

Tenck · Nov 10, 2011

Zzoram said:
If I never used the forums, should I be concerned?

If you ever made a purchase for your games, you should be worried.

Zzoram · Nov 10, 2011

MRORANGE said:
at least we will get a free game after all this is over

Or at least a free hat.

Wario64 · Nov 10, 2011

"We do not have evidence that encrypted credit card numbers or personally identifying information were taken by the intruders, or that the protection on credit card numbers or passwords was cracked. We are still investigating."

markot · Nov 10, 2011

spats said:
But I thought Steam was unhackable because Valve are the immortal God-Kings of the internet.

durp

Chinner · Nov 10, 2011

Wario64 said:
"We do not have evidence that encrypted credit card numbers or personally identifying information were taken by the intruders, or that the protection on credit card numbers or passwords was cracked. We are still investigating."

but that doesn't make an exciting thread title!

ElRenoRaven · Nov 10, 2011

GODDAMN IT!!!!!!!!!!!!

Please tell me this is a joke. Please tell me this is a joke. I'm begging here. PLEASE.

kassatsu · Nov 10, 2011

Glix said:
Are we sure its legit and not a phishing email?

It is from Valve Press.

bigtroyjon · Nov 10, 2011

FINALBOSS said:
They said credit card information was taken...and then go on to say they don't believe credit card numbers were taken. The fuck?

They said someone had access to the numbers, not that the numbers were actually taken.

funkystudent · Nov 10, 2011

PSN, XBLA and steam all getting hacked this year?

Iwata laughs

epmode · Nov 10, 2011

Good thing I have unique passwords and don't pay with a credit card. Resetting password now! (not that anyone can get in with Steam Guard already enabled)

Kentpaul · Nov 10, 2011

Glad i switched to the secure origin, all my details have changed since i last used steam i should be all good.

Clevinger · Nov 10, 2011

Kyoufu said:
Looking forward to 5 free Steam games.

What?

Dalauz · Nov 10, 2011

I didnt get any mail, why?

panic attack

Mama Robotnik · Nov 10, 2011

Shit.

Valve, I expected better. Glad you are informing us quickly and mass-enforcing a password change for all users but still, pretty disappointed.

FINALBOSS · Nov 10, 2011

Wario64 said:
"We do not have evidence that encrypted credit card numbers or personally identifying information were taken by the intruders, or that the protection on credit card numbers or passwords was cracked. We are still investigating."

Makes no fucking sense when in the previous sentence they said credit card information WAS taken.

Busaiku · Nov 10, 2011

I've never actually used my CC on Steam, so I don't think I've input my number.

Technosteve · Nov 10, 2011

FINALBOSS said:
They said credit card information was taken...and then go on to say they don't believe credit card numbers were taken. The fuck?

data tables were taken, data tables were salted and encrypted

The Lamonster · Nov 10, 2011

I hate hackers more and more every year.

Wichu · Nov 10, 2011

If I buy my Steam games through Paypal, I should be safe, right?

Hot Coldman · Nov 10, 2011

Balls! Really hope card info is safe. Pretty sure it doesn't save mine though. Password would still suck, obviously *changes*

Chinner · Nov 10, 2011

Mama Robotnik said:
Shit.

Valve, I expected better. Glad you are informing us quickly and mass-enforcing a password change for all users but still, pretty disappointed.

totally. how dare they get hacked! i'm closing my account and going with EA's Origin.

Garcia el Gringo · Nov 10, 2011

Hold on, I'm still dealing with my Xbox account hack!

Green Biker Dude · Nov 10, 2011

it's over, steam is finished

time to switch to origin

edit: fuuuu stupid duck

Prophet Steve · Nov 10, 2011

spats said:
But I thought Steam was unhackable because Valve are the immortal God-Kings of the internet.

Don't you know that before the release of Half Life 2 the release was stolen?

gofreak · Nov 10, 2011

This is like the PSN situation again. CC info MIGHT have been taken but we're not sure etc. etc.

Oh well. Glad I didn't update my CC on Steam after I changed it after the PSN hack.

Dr. Malik · Nov 10, 2011

Valve is doomed, they will never recover from this. I see most camps trading in their Steam accounts for Origin security

rvy · Nov 10, 2011

But... I have trouble remembering my passwords. Why, Gaben?

markot · Nov 10, 2011

FINALBOSS said:
Makes no fucking sense when in the previous sentence they said credit card information WAS taken.

We learned that intruders obtained access to a Steam database in addition to the forums.

That doesnt mean it was taken...

Nemo · Nov 10, 2011

Inform me if my account was in there please. I don't want to find out when some list leaks out

Chinner · Nov 10, 2011

FINALBOSS said:
Makes no fucking sense when in the previous sentence they said credit card information WAS taken.

from what i understand, when the hack happened they had (possible) access to credit card information, but there is no evidence to suggest that they have actually taken any information .

Mama Robotnik · Nov 10, 2011

Chinner said:
totally. how dare they get hacked! i'm closing my account and going with EA's Origin.

Not what I said.

Given the circumstances, I fail to see why it is irrational to be disappointed.

Support NeoGAF

Steam Database was hacked... Hackers got access to encrypted Credit Card info + more

Banned

Member

Member

Banned

Banned

Member

Member

Member

Member

Banned

Member

Member

Member

Member

Banned

Member

Member

Member

Neo Member

Member

Member

works for Gamestop (lol)

Banned

Banned

Member

Banned

Member

Member

Member

When keepin it real goes wrong. Very, very wrong.

Member

Member

Member

Banned

Member

Banned

Member

Member

Banned

Banned

Member

Banned

Member

GAF's Bob Woodward

FlatAss_

Banned

Banned

Will Eat Your Children

Banned

Member

Similar threads