|
Title: Steam hacked, CC numbers stolen, Valve coverup Post by: bhodi on April 18, 2007, 09:30:17 AM It's got all the drama (http://emp.damage-web.net/viewtopic.php?p=62590) you could ask for!
So far they're only sending people who have questions over to this page (http://support.steampowered.com/cgi-bin/steampowered.cfg/php/enduser/std_adp.php?p_faqid=294). Thanks digg (http://www.digg.com/gaming_news/Valve_Hacked_Your_Info_may_be_at_risk). Title: Re: Steam hacked, CC numbers stolen, Valve coverup Post by: Trippy on April 18, 2007, 09:40:49 AM Steam wasn't hacked, a Valve Web site (apparently) was.
Title: Re: Steam hacked, CC numbers stolen, Valve coverup Post by: schild on April 18, 2007, 09:43:25 AM I'm so glad it was hacked by a happy guy. I was worried for a minute he had a grudge or something. Also, what Trippy said, the guy isn't exactly claiming what is implied.
Title: Re: Steam hacked, CC numbers stolen, Valve coverup Post by: bhodi on April 18, 2007, 09:44:40 AM They rooted the Cafe webserver, which gave them access to CC numbers and account details. On that forum page, a quote from him:
Quote VALVe's security was recently shown for what it really is; no exsistant. A hacker known as MaddoxX recently infiltrated VALVe's web servers, exposing, what should be confidential information, to the public. The hacker managed to gain root access to the server, meaning they could view anything they wanted (Including Customer Credit Card details, and even VALVe's current assets). The hacker then ripped the site and created a "Release" (http://rapidshare.com/files/24958280/CafeHomies-PROViSiON.rar.html) in an attempt to grab VALVe's attention (Who are renouned for poor security). Included in the release are all CAS/CAC files (Including certificates), proving once again that their Cafe program is not as secure as they thought. Valve has yet to fix the exploit the hacker used, and has not yet even replied to him. It has also failed to reveal to it's customers that this event even occured, even though they're private details have been exposed. Please help us to inform the public and VALVe customers of this important news. Access != stolen, I know, but still. Pretty big. No idea why their quickbooks files would be up on a webserver. Title: Re: Steam hacked, CC numbers stolen, Valve coverup Post by: Yoru on April 18, 2007, 09:50:12 AM Okay, so someone clarify - do I need to panic if I used Steam to buy something 6 months ago, or do I need to panic if I used Valve Cafe?
Title: Re: Steam hacked, CC numbers stolen, Valve coverup Post by: Trippy on April 18, 2007, 09:59:21 AM Okay, so someone clarify - do I need to panic if I used Steam to buy something 6 months ago, or do I need to panic if I used Valve Cafe? It sort of sounds like the former considering that server apparently has Valve internal corporate information on it unrelated to the Cafe stuff.Title: Re: Steam hacked, CC numbers stolen, Valve coverup Post by: bhodi on April 18, 2007, 10:01:15 AM That webserver was probably the vector into their database clusters, and probably had connection information on it; that was likely how he gained access to customer information.
Title: Re: Steam hacked, CC numbers stolen, Valve coverup Post by: Azazel on April 18, 2007, 10:17:36 PM When exactly was HL2 released? I need to figure out if I have to get my cards reissued.
Title: Re: Steam hacked, CC numbers stolen, Valve coverup Post by: Trippy on April 18, 2007, 11:58:40 PM When exactly was HL2 released? I need to figure out if I have to get my cards reissued. November 16, 2004 according to Wikipedia.Title: Re: Steam hacked, CC numbers stolen, Valve coverup Post by: Azazel on April 19, 2007, 10:02:11 AM Ah, wiki. good point.
I checked my card, they were all reissued last year, so while the face numbers are the same, the code on the back will be different. Should be ok then. Title: Re: Steam hacked, CC numbers stolen, Valve coverup Post by: Trippy on April 19, 2007, 04:33:54 PM Ah, wiki. good point. Assuming they even care about that stuff. SOE used to bill my CC even after it expired and I had to cancel the entire account just to make sure they wouldn't keep trying to do that forever.I checked my card, they were all reissued last year, so while the face numbers are the same, the code on the back will be different. Should be ok then. Title: Re: Steam hacked, CC numbers stolen, Valve coverup Post by: hal on April 19, 2007, 06:44:46 PM SOE is the debil.
Title: Re: Steam hacked, CC numbers stolen, Valve coverup Post by: eldaec on April 21, 2007, 10:26:10 AM Okay, so someone clarify - do I need to panic if I used Steam to buy something 6 months ago, or do I need to panic if I used Valve Cafe? Read your credit card statement each month and make a fuss if it is wrong. Then you don't have to panic whatever happened. And seriously, your bank is likely to be at least as insecure as Valve. Title: Re: Steam hacked, CC numbers stolen, Valve coverup Post by: Azazel on April 22, 2007, 03:50:16 PM Ah, wiki. good point. Assuming they even care about that stuff. SOE used to bill my CC even after it expired and I had to cancel the entire account just to make sure they wouldn't keep trying to do that forever.I checked my card, they were all reissued last year, so while the face numbers are the same, the code on the back will be different. Should be ok then. Well, yea. But any charges coming from Russian CC hax0rs would be new charges, rather than recurring billing like a SOE one. And even if my bank is at least as insecure as Valve.. my bank's not the one who got hacked in this instance. |