PC News

Valve confirms a Steam security breach

Encrypted passwords and credit card details stolen

Valve boss Gabe Newell has personally apologised to Steam users for a confirmed security breach that occurred last weekend.

It had emerged this week that the Steam forums had been vandalised by hackers but it seems that the attack has gone deeper than that with hackers gaining access to secure database servers housing personal information such as names, purchase data, billing addresses, hashed and salted passwords and encrypted credit card information.

Newell explained: "We don't have evidence of credit card misuse at this time. Nonetheless you should watch your credit card activity and statements closely. While we only know of a few forum accounts that have been compromised, all forum users will be required to change their passwords the next time they login. If you have used your Steam forum password on other accounts you should change those passwords as well. We do not know of any compromised Steam accounts, so we are not planning to force a change of Steam account passwords (which are separate from forum passwords). However, it wouldn't be a bad idea to change that as well, especially if it is the same as your Steam forum account password."

He added: "I am truly sorry this happened, and I apologize for the inconvenience."

Valve joins the growing list of developers and publishers that have been attacked this year in the wake of the PSN attack that closed the service down weeks back in April of this year. BioWare, Codemasters, SEGA, Epic, Nintendo and Eidos Montreal all experienced similar attacks in the following months.

E3 Trailer