Home / / Gaming service Steam hacked

Gaming service Steam hacked

35 million users may have had details compromised in hack

Gaming service Steam hacked
Steam video gaming service has been compromised and credit card data and user IDs of its 35 million users may have been compromised.

Thirty-five million users of the Steam video game service may have had their ID and credit card details stolen in a cyber-attack, according to the BBC.

Valve, the company that owns and operated the service, discovered an intrusion one of its user databases while it was investigating a security breach in its discussion forums.

The attackers stole log-in details from the sites forums and used them to access a database that held ID and credit card data.

So far there is no evidence of the credit card data or account details being misused, said Valve.

The attack took place on 6th November and the Steam forums were removed as soon as the hack was discovered.

At first the firm said the discussion groups were offline for maintenance, but a post by Valve boss, Gabe Newell on the front page of the forums on 10th November has revealed that the sites were shut down because of the defacement.

According to the BBC, Valve's initial investigation into the incident showed that the attackers gained access to a Steam database that held user names, hashed and salted passwords, game purchases, email addresses, billing addresses and encrypted credit card information.

The company has not revealed whether this database held the details of the full 35 million users, or just a part of that number.

Newell said Valve had only discovered that a few forum accounts had been compromised, but added that all forum users will be required to change their passwords when the discussion site re-opens.

The Steam service lets people buy, download, play and chat about a variety of games, only some of which are made by Valve itself.

About 1,500 titles are currently available on Steam including Skyrim, LA Noire and Modern Warfare 3.

Follow us to get the most comprehensive IT Security news delivered fresh from our social media accounts on Facebook, Twitter, Youtube, and listen to our Weekly Podcast. Click here to sign up for our weekly newsletter on curated technology news in the Middle East and Worldwide.

REGISTER NOW | Webinar Event | Security you can bank on – Safeguarding the Middle East’s financial sector

Presented in partnership with security and network specialist Cybereason, the second in the three part webinar series will bring together a panel of experts to discuss how banks and financial institutions are evolving their service offering while simultaneously staying one step ahead of the cyber criminals who seek to bring their operations crashing to the ground.