Gaming service Steam hacked
35 million users may have had details compromised in hack
Thirty-five million users of the Steam video game service may have had their ID and credit card details stolen in a cyber-attack, according to the BBC.
Valve, the company that owns and operated the service, discovered an intrusion one of its user databases while it was investigating a security breach in its discussion forums.
The attackers stole log-in details from the sites forums and used them to access a database that held ID and credit card data.
So far there is no evidence of the credit card data or account details being misused, said Valve.
The attack took place on 6th November and the Steam forums were removed as soon as the hack was discovered.
At first the firm said the discussion groups were offline for maintenance, but a post by Valve boss, Gabe Newell on the front page of the forums on 10th November has revealed that the sites were shut down because of the defacement.
According to the BBC, Valve's initial investigation into the incident showed that the attackers gained access to a Steam database that held user names, hashed and salted passwords, game purchases, email addresses, billing addresses and encrypted credit card information.
The company has not revealed whether this database held the details of the full 35 million users, or just a part of that number.
Newell said Valve had only discovered that a few forum accounts had been compromised, but added that all forum users will be required to change their passwords when the discussion site re-opens.
The Steam service lets people buy, download, play and chat about a variety of games, only some of which are made by Valve itself.
About 1,500 titles are currently available on Steam including Skyrim, LA Noire and Modern Warfare 3.