Steam Hacked.

[apocrypha]

I've used Keepass + Dropbox for a while now and really like it

How are you using Dropbox with KeePass? Do you store the key database on it?

I've installed KeePass, now I just need to motivate myself to spend the time setting it up with the 100s of websites and apps that need passwords. 

[Thrawn]

How are you using Dropbox with KeePass? Do you store the key database on it?

I've installed KeePass, now I just need to motivate myself to spend the time setting it up with the 100s of websites and apps that need passwords. 

Yeah, that's all I meant.  So any computer I have my Dropbox on I have access to my updated KeePass stuff.

[Merusk]

You guys do realize that only the most amateur businesses would store your CC info in an unencrypted format, right?

What, like Sony?

There's been too many in the last year and it's only going to get more lucrative, not less. Not storing your CC info with a company is a reasonable precaution. Not to mention having it there for "one click access" is only to the company's advantage so you don't think about those impulse purchases.

[Sophismata]

It still puzzles me that people go spastic over their credit card numbers, when the personally identifying information (in particular, email + password) actually allows an aggressor to commit fraud on a much larger scale. Also, remember that the vast majority of people use the same password for everything.

But nope, it's always credit cards numbers that everyone worries about.

[NiX]

It still puzzles me that people go spastic over their credit card numbers, when the personally identifying information (in particular, email + password) actually allows an aggressor to commit fraud on a much larger scale. Also, remember that the vast majority of people use the same password for everything.

But nope, it's always credit cards numbers that everyone worries about.

Yeah, it boggles my mind. I think it's because people tie way too much stuff to their credit card and rely heavily on their credit being available all the time.

I have a system of using the same password for websites that don't have any payment info associated with them (gamespot or the like) and anything important (Email, f13...etc) or holding payment information I use KeePass for.

Working out well for me so far. Not to mention both my bank and credit card company are OCD about fraud. I get a call at least once a month regarding transactions, even some that are fairly common for me. It can be annoying, but at least I know they're constantly looking out for me.

[Torinak]

Turns out that encrypted credit card info was stolen during the breach, according to an announcement earlier today:

Dear Steam Users and Steam Forum Users

We continue our investigation of last year's intrusion with the help of outside security experts. In my last note about this, I described how intruders had accessed our Steam database but we found no evidence that the intruders took information from that database. That is still the case.

Recently we learned that it is probable that the intruders obtained a copy of a backup file with information about Steam transactions between 2004 and 2008. This backup file contained user names, email addresses, encrypted billing addresses and encrypted credit card information. It did not include Steam passwords.

We do not have any evidence that the encrypted credit card numbers or billing addresses have been compromised. However as I said in November it's a good idea to watch your credit card activity and statements. And of course keeping Steam Guard on is a good idea as well.

We are still investigating and working with law enforcement authorities. Some state laws require a more formal notice of this incident so some of you will get that notice, but we wanted to update everyone with this new information now.

Gabe

On the plus side, every CC I had in that time period has long since been replaced, due to data leaks at other companies and merchants. 

[Paelos]

Haha same with mine. Go figure.

[Rendakor]

Same here, and I've even moved since then so no harm, no foul.