| Pages: [1] 2 3 4 :: one page |
| Author |
Thread Statistics | Show CCP posts - 0 post(s) |

Barakkus
1047
|
Posted - 2011.11.11 04:11:00 -
[1] - Quote
I got this after playing Homefront tonight:
"November 10th, 2011 Dear Steam Users and Steam Forum Users:
Our Steam forums were defaced on the evening of Sunday, November 6. We began investigating and found that the intrusion goes beyond the Steam forums.
We learned that intruders obtained access to a Steam database in addition to the forums. This database contained information including user names, hashed and salted passwords, game purchases, email addresses, billing addresses and encrypted credit card information. We do not have evidence that encrypted credit card numbers or personally identifying information were taken by the intruders, or that the protection on credit card numbers or passwords was cracked. We are still investigating.
We donGÇÖt have evidence of credit card misuse at this time. Nonetheless you should watch your credit card activity and statements closely.
While we only know of a few forum accounts that have been compromised, all forum users will be required to change their passwords the next time they login. If you have used your Steam forum password on other accounts you should change those passwords as well.
We do not know of any compromised Steam accounts, so we are not planning to force a change of Steam account passwords (which are separate from forum passwords). However, it wouldnGÇÖt be a bad idea to change that as well, especially if it is the same as your Steam forum account password.
We will reopen the forums as soon as we can.
I am truly sorry this happened, and I apologize for the inconvenience.
Gabe."
I would highly recommend changing your passwords and credit card information. |

The Archetect
Capital Construction Research Pioneer Alliance
2
|
Posted - 2011.11.11 04:35:00 -
[2] - Quote
Not cool bro... |

Barakkus
1047
|
Posted - 2011.11.11 05:37:00 -
[3] - Quote
Yup, not liking this, changed my password already, going to call the bank tomorrow.
It will be months before they start using credit card numbers, or sell them, so you have a little time, but it will be pretty bad I think since there are so many people that have bought stuff off steam, CoD crowd and BF3 crowd in particular. Even if the stuff is encrypted, doesn't mean they can't crack it. |

Zions Child
Odyssey Inc SpaceMonkey's Alliance
62
|
Posted - 2011.11.11 05:59:00 -
[4] - Quote
It would have been nice if they told us who may have been affected, although I have not yet gotten that e-mail. |

Taedrin
Kushan Industrial
147
|
Posted - 2011.11.11 06:36:00 -
[5] - Quote
Zions Child wrote:It would have been nice if they told us who may have been affected, although I have not yet gotten that e-mail.
They likely do not know yet. At least, this is presuming that they are telling us as soon as they discovered the incident. |

Lutz Major
Austriae Est Imperare Orbi Universo
36
|
Posted - 2011.11.11 07:26:00 -
[6] - Quote
Zions Child wrote:It would have been nice if they told us who may have been affected, although I have not yet gotten that e-mail. The message also appears when you want to access their forums. Good thing, that I always paid via PayPal   |

XIRUSPHERE
In Bacon We Trust
102
|
Posted - 2011.11.11 07:26:00 -
[7] - Quote
Just saw it, just changed my details. Honestly the straw that breaks the camels back at this point, it was getting old dealing with having the client manifest itself as a resource hogging store front to even use the software you buy while they pocket huge dividends. Guess they didn't spend much of that on actually keeping stuff locked down just like sony.
Going to avoid using steam like the plague now. The advantage of a bad memory is that one can enjoy the same good things for the first time several times.
One will rarely err if extreme actions be ascribed to vanity, ordinary actions to habit, and mean actions to fear. |

Shivus Tao
Broski Enterprises Elite Space Guild
36
|
Posted - 2011.11.11 07:45:00 -
[8] - Quote
XIRUSPHERE wrote:Just saw it, just changed my details. Honestly the straw that breaks the camels back at this point, it was getting old dealing with having the client manifest itself as a resource hogging store front to even use the software you buy while they pocket huge dividends. Guess they didn't spend much of that on actually keeping stuff locked down just like sony.
Going to avoid using steam like the plague now.
Except that they actually encrypted passwords, unlike sony. This is to be expected with commerce rapidly expanding into cyberspace, and will become more commonplace in the coming years.
Enjoy not being able to play new games anymore since pretty much everything goes through steam now. |

Jenn Makanen
Science and Trade Institute Caldari State
51
|
Posted - 2011.11.11 11:01:00 -
[9] - Quote
Shivus Tao wrote:XIRUSPHERE wrote:Just saw it, just changed my details. Honestly the straw that breaks the camels back at this point, it was getting old dealing with having the client manifest itself as a resource hogging store front to even use the software you buy while they pocket huge dividends. Guess they didn't spend much of that on actually keeping stuff locked down just like sony.
Going to avoid using steam like the plague now. Except that they actually encrypted passwords, unlike sony. This is to be expected with commerce rapidly expanding into cyberspace, and will become more commonplace in the coming years. Enjoy not being able to play new games anymore since pretty much everything goes through steam now.
Encrypted and salted. Makes a world of difference adding a salt to it. Hopefully they used a two part salt, one purely in the applications, and one in the db, but even just a db based one helps.  |

Alain Kinsella
8
|
Posted - 2011.11.11 11:56:00 -
[10] - Quote
Thanks for the heads-up. I don't visit Steam as often as I used to, and don't even have it installed on the new HDD right now (out of lazyness - and lack of time - not protest).
I need to have my cards converted to the new bank anyway, or switch to PayPal.
I may have come here from Myst Online, but that does not make me any less bloodthirsty than the average Eve player.
Just more subtle.
|

luZk
Jaegerkorpset
33
|
Posted - 2011.11.11 12:12:00 -
[11] - Quote
Thanks for the heads up Barakkus.
This is why I never ever press the "save pw or credit card information" and use different pw's for everything. Who would have know beeing paranoid finally paid off. |

Barakkus
1052
|
Posted - 2011.11.11 13:08:00 -
[12] - Quote
35 million subscribers I guess http://www.databreaches.net/?p=21478
Who knows how many now that they are selling MW3 and BF3. I would venture a guess at half the EVE community if not more bought BF3. |

Abrazzar
315
|
Posted - 2011.11.11 14:25:00 -
[13] - Quote
And this is why forcing people to use steam is bad, Bethesda. Please visit your user settings to re-enable images. |

Kengutsi Akira
Ministry of War Amarr Empire
153
|
Posted - 2011.11.11 14:44:00 -
[14] - Quote
Would be nice if Steam did like everyone else does when that happens and offers a couple months of free identity theft insurance protection cause they were liable for using ****** security
Abrazzar wrote:And this is why forcing people to use steam is bad, Bethesda.
and Paradox, and Kerberos and hundreds of others https://forums.eveonline.com/default.aspx?g=posts&m=255722#post255722
My stance on WiS |

BrundleMeth
Temporal Mechanics
1
|
Posted - 2011.11.11 14:55:00 -
[15] - Quote
PayPal FTW.... Until they get hacked.... |

Barakkus
1052
|
Posted - 2011.11.11 15:00:00 -
[16] - Quote
Abrazzar wrote:And this is why forcing people to use steam is bad, Bethesda.
Yeah, I don't really like having to use steam, I don't like the fact that I have to have an internet connection to play games that don't require one for single player. I also don't like the idea if they ever go out of business, I will more than likely lose access to all the games I've purchased through them. |

Barakkus
1052
|
Posted - 2011.11.11 15:03:00 -
[17] - Quote
I predict a number of account compromises for EVE since a number of people got EVE through Steam. |

stoicfaux
365
|
Posted - 2011.11.11 15:06:00 -
[18] - Quote
Guess it's time to start using one time credit card numbers for purchases.
Tinfoil. It should be at the top of everyone's food pyramid.
|

Barakkus
1052
|
Posted - 2011.11.11 15:09:00 -
[19] - Quote
BrundleMeth wrote:PayPal FTW.... Until they get hacked....
They have been hacked in the past. |

Enik3
Greater Order Of Destruction Black Legion.
4
|
Posted - 2011.11.11 15:19:00 -
[20] - Quote
Gabe Newall has indicated that AES256 encryption was used on sensitive information, so there's very little to worry about.
I have far more faith in the security layers at a premier e-commerce company like Steam than I do in, say, ANY government agency. I'm pretty sure the average person's personal data is much more exposed in other places. |

Barakkus
1053
|
Posted - 2011.11.11 15:23:00 -
[21] - Quote
Enik3 wrote:Gabe Newall has indicated that AES256 encryption was used on sensitive information, so there's very little to worry about if that's true.
I have far more faith in the security layers at a premier e-commerce company like Steam than I do in, say, ANY government agency. I'm pretty sure the average person's personal data is much more exposed in other places.
Yeah, but we saw how that worked out with Sony, who has a much larger customer base and much larger product base. |

Kengutsi Akira
Ministry of War Amarr Empire
153
|
Posted - 2011.11.11 16:34:00 -
[22] - Quote
"see why its bad to force steam on us,"
1C Company 2K Games Activision Akella Atari Bethesda Big Fish Games bitComposer Bohemia Interactive Capcom City Interactive Codemasters Deep Silver Electronic Arts Epic Games Focus Her Interactive id Software Interplay iWin Kalypso Konami LucasArts Majesco Meridian4 MumboJumbo Namco Networks America, Inc. NCsoft Nordic Games NovaLogic Paradox Interactive PlayFirst PopCap Prima Games RailSimulator.com Rockstar Games Sandlot Games SEGA Sony Online SouthPeak Games SQUARE ENIX, Eidos Interactive Strategy First Telltale Games THQ Tilted Mill Topware Ubisoft Valve Viva Media Warner Bros.
lol though, I cant cancel my card, its a holiday. I cant change my password, I get "unable to process request try again later"
what did they do, hack it and **** their ability to process PW change requests? https://forums.eveonline.com/default.aspx?g=posts&m=255722#post255722
My stance on WiS |

Barakkus
1053
|
Posted - 2011.11.11 17:00:00 -
[23] - Quote
Kengutsi Akira wrote:lol though, I cant cancel my card, its a holiday. I cant change my password, I get "unable to process request try again later"
what did they do, hack it and **** their ability to process PW change requests?
I was able to change my passwords last night when I got the announcement. There may have been an influx of people doing it today that broke the system. I would try again a little later since a **** ton of people just woke up to the announcement today.
You can request a new card and still continue to use the old one until you want it deactivated. |

TC wabbajack
Prosperity Through Violence Unprovoked Aggression
4
|
Posted - 2011.11.11 17:53:00 -
[24] - Quote
I blame the thievng scum hackers.
speaking as a PSN and steam user |

Kengutsi Akira
Ministry of War Amarr Empire
153
|
Posted - 2011.11.11 18:50:00 -
[25] - Quote
is paypal safer?
https://forums.eveonline.com/default.aspx?g=posts&m=255722#post255722
My stance on WiS |

Barakkus
1053
|
Posted - 2011.11.11 18:57:00 -
[26] - Quote
Nothing is safer other than getting temporary CC numbers, which I don't believe my bank offers at the moment.
Paypal has had their share of breaches before too. |

KaarBaak
145
|
Posted - 2011.11.11 19:30:00 -
[27] - Quote
Not requiring Steam to play a single-player game would be safer.
|

Krotfric McEnchroe
Medical Mechanical Nabaal Syndicate
0
|
Posted - 2011.11.11 19:35:00 -
[28] - Quote
That sucks. Kinda glad I haven't bought any games on steam for a while, since any credit card details steam have are for an expired card heh |

Barakkus
1053
|
Posted - 2011.11.11 19:41:00 -
[29] - Quote
Krotfric McEnchroe wrote:That sucks. Kinda glad I haven't bought any games on steam for a while, since any credit card details steam have are for an expired card heh
Even if the card you used was "expired" there's still a good chance the number is the same, as long as they put in an expiration date that is later than today, a lot of the time a transaction will go through. I've fumbled expiration dates a number of times and transactions still get processed. Only way to be sure is to get completely new numbers and make sure the old numbers are deactivated completely. My EVE sub on my alt got renewed even though the number on the card that was still on file was "deactivated" I got an email about an error processing the transaction, then logged into my bank account to check it and lo-and-behold, the bank approved the transaction anyways...even though the number was not supposed to work anymore... |

Krotfric McEnchroe
Medical Mechanical Nabaal Syndicate
0
|
Posted - 2011.11.11 20:04:00 -
[30] - Quote
Barakkus wrote:Krotfric McEnchroe wrote:That sucks. Kinda glad I haven't bought any games on steam for a while, since any credit card details steam have are for an expired card heh Even if the card you used was "expired" there's still a good chance the number is the same, as long as they put in an expiration date that is later than today, a lot of the time a transaction will go through. I've fumbled expiration dates a number of times and transactions still get processed. Only way to be sure is to get completely new numbers and make sure the old numbers are deactivated completely. My EVE sub on my alt got renewed even though the number on the card that was still on file was "deactivated" I got an email about an error processing the transaction, then logged into my bank account to check it and lo-and-behold, the bank approved the transaction anyways...even though the number was not supposed to work anymore...
Yeah that's understandable, though in my case, my current card has a different number, so I don't think the old one would even work anymore. Though I may be wrong.
|
| |
|
| Pages: [1] 2 3 4 :: one page |
| First page | Previous page | Next page | Last page |