25th December 2015 By Alice Truong
Updated Dec. 25, 2015, 3:20pm: Steam’s site came back online around 3:15pm Pacific Time. Some users report that they are no longer able to see the personal details of other people’ accounts.
A security bug on the gaming platform Steam allowed users to view other people’s account information, including credit card numbers, mailing addresses, and email addresses.
On Christmas Day, amid Steam’s winter sale, users took to Reddit, Twitter, and gaming forum Neogaf to report the issue. Steam’s website was unavailable about an hour after the first reports surfaced, though it remains unclear if the issues are related.
Full Article
Popular gaming platform Steam just went down after users reported a major security bug
+5430th December 2015
Valve is now apologizing for the Christmas day incident that exposed users’ information to each other almost randomly. Here’s their announcement today:
Full Article
Valve is now apologizing for the Christmas day incident that exposed users’ information to each other almost randomly. Here’s their announcement today:
On December 25th, a configuration error resulted in some users seeing Steam Store pages generated for other users. Between 11:50 PST and 13:20 PST store page requests for about 34k users, which contained sensitive personal information, may have been returned and seen by other users.
The content of these requests varied by page, but some pages included a Steam user’s billing address, the last four digits of their Steam Guard phone number, their purchase history, the last two digits of their credit card number, and/or their email address. These cached requests did not include full credit card numbers, user passwords, or enough data to allow logging in as or completing a transaction as another user.
Full Article
+54Steam Store victims can expect an email from Valve.
By Stephanie Mlot
March 4, 2016
http://www1.pcmag.com/media/images/481939-valve-steam-controller.jpg?thumb=y&width=740&height=426
Valve has apologized for a winter Steam Sale breach—more than two months after 34,000 users had personal information exposed to other shoppers.
The target of a Christmas Day denial of service attack, the online shop was overwhelmed by 2,000 percent more traffic than usual. In an effort to counter the assault, a Valve partner deployed new caching rules, one of which incorrectly cached Web traffic for authenticated users, allowing some people to access details generated for others.
Full Article
By Stephanie Mlot
March 4, 2016
http://www1.pcmag.com/media/images/481939-valve-steam-controller.jpg?thumb=y&width=740&height=426
Valve has apologized for a winter Steam Sale breach—more than two months after 34,000 users had personal information exposed to other shoppers.
The target of a Christmas Day denial of service attack, the online shop was overwhelmed by 2,000 percent more traffic than usual. In an effort to counter the assault, a Valve partner deployed new caching rules, one of which incorrectly cached Web traffic for authenticated users, allowing some people to access details generated for others.
Full Article
Reply
Login to the community
No account yet? Create an account
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.