Credit card info compromised in Steam hack

Credit card details of Steam users have been accessed by hackers - let's hope the encryption securing it can't be cracked.

Hacker

Encrypted credit card information has been accessed by hackers who broke into the database of online gaming service Steam.

Valve, Steam's owner, said it has not seen any evidence of credit card misuse at the current time and had no evidence the encrypted details had been actually stolen.

"We learned that intruders obtained access to a Steam database in addition to the forums. This database contained information including user names, hashed and salted passwords, game purchases, email addresses, billing addresses and encrypted credit card information," said Valve's head Gabe Newell, in a Steam forum post.

"We do not have evidence that encrypted credit card numbers or personally identifying information were taken by the intruders, or that the protection on credit card numbers or passwords was cracked. We are still investigating."

We do not have evidence that encrypted credit card numbers or personally identifying information were taken by the intruders.

Despite no evidence indicating the hackers had used credit card data from the database, Valve still recommended users check their bank account activity and statements "closely."

"While we only know of a few forum accounts that have been compromised, all forum users will be required to change their passwords the next time they login," the company added. "If you have used your Steam forum password on other accounts you should change those passwords as well."

The company became aware of the hack when Steam forums were defaced on 6 November.

Steam is used to distribute games and letting gamers share information. It was recently offering downloads for a demo of the massively popular Football Manager 2012 title and RPG Skyrim is currently available from the service.

Gaming companies have been battered by hackers in the past year, as plenty of valuable data is held on such firms' servers.

Bethesda, the creator of Skyrim, was hit by LulzSec earlier this year. Sony, Epic Games and Nintendo have also been attacked.

Featured Resources

Digital document processes in 2020: A spotlight on Western Europe

The shift from best practice to business necessity

Download now

Four security considerations for cloud migration

The good, the bad, and the ugly of cloud computing

Download now

VR leads the way in manufacturing

How VR is digitally transforming our world

Download now

Deeper than digital

Top-performing modern enterprises show why more perfect software is fundamental to success

Download now

Recommended

Microsoft spearheads industry-wide charter against AI cyber attacks
Security

Microsoft spearheads industry-wide charter against AI cyber attacks

23 Oct 2020
Weekly threat roundup: Chrome, Citrix and WordPress
Security

Weekly threat roundup: Chrome, Citrix and WordPress

23 Oct 2020
IT services giant Sopra Steria falls victim to Ryuk ransomware
Security

IT services giant Sopra Steria falls victim to Ryuk ransomware

23 Oct 2020
CMS platforms succumb to KashmirBlack botnet as businesses rush online
Security

CMS platforms succumb to KashmirBlack botnet as businesses rush online

22 Oct 2020

Most Popular

The top 12 password-cracking techniques used by hackers
Security

The top 12 password-cracking techniques used by hackers

5 Oct 2020
The enemy of security is complexity
Sponsored

The enemy of security is complexity

9 Oct 2020
What is a 502 bad gateway and how do you fix it?
web hosting

What is a 502 bad gateway and how do you fix it?

5 Oct 2020