Valve confirms Steam security breach

By Fred Dutton Published 10 November, 2011

Personal info, encrypted credit card details compromised.

Valve has confirmed that users' personal information has been compromised following a Steam security breach at the weekend.

As reported earlier this week, an intrusion was detected in the Steam forums on Sunday resulting in them being temporarily shut down.

However, according to an IM from company president Gabe Newell just sent to the entire Steam user base, it now turns out that the breach goes beyond just the message boards.

"We learned that intruders obtained access to a Steam database in addition to the forums," he wrote.

"This database contained information including user names, hashed and salted passwords, game purchases, email addresses, billing addresses and encrypted credit card information.

"We do not have evidence that encrypted credit card numbers or personally identifying information were taken by the intruders, or that the protection on credit card numbers or passwords was cracked. We are still investigating.

"We don't have evidence of credit card misuse at this time," the note continued. "Nonetheless you should watch your credit card activity and statements closely."

Newell stated that Valve requires all users to change their forum passwords next time they log-in.

"If you have used your Steam forum password on other accounts you should change those passwords as well," he advised.

"We do not know of any compromised Steam accounts, so we are not planning to force a change of Steam account passwords (which are separate from forum passwords). However, it wouldn't be a bad idea to change that as well, especially if it is the same as your Steam forum account password."

Valve aims to reopen the forums "as soon as we can."

"I am truly sorry this happened, and I apologise for the inconvenience," Newell concluded.

Picture of Fred.

About Fred Dutton

Fred Dutton is Eurogamer's US news editor, based in Washington DC.

Read more articles from Fred by visiting the Fred Dutton archive page.

You may also like...

Comments (109) Latest comment 6 months ago

Comments for this article are now closed, but please feel free to continue chatting on the forum!

  • mrpsb #1 7 months ago

    Oops

  • bantamenace #2 7 months ago

    Bugger

  • ashmon #3 7 months ago

    After what happened earlier on this year with Sony you think that companies would be proactive and up thier security.

  • Scurrminator #4 7 months ago

    This is getting stupid

  • spongebob #5 7 months ago

    No one is safe nowadays. Welcome to the future.

  • FogHeart #6 7 months ago

    That's OK. In the current economic climate, I have decided to withdraw everything from the bank and stuff it under the mattress.

    I don't suppose anyone's made a joke about Valve being leaky yet?

  • Paul_cz #7 7 months ago

    Fucking hackers.

  • Ceelion #8 7 months ago

    Post deleted at 09:51:27 12-12-2011

  • mr_pink #9 7 months ago

    Seriously? Did they really store that information on the same server as their outdated and insecure vBulletin installation. I'm sorry but that is just ******* dumb, especially after the Sony debacle. Yes hackers did it but -1 respect to Valve for this security failure.

  • HerrQwerty #10 7 months ago

    EA you bastards!!

  • Jamash #11 7 months ago

    I have a Steam account, but I've never signed up to the Steam Forums.

    Is my credit card information and billing address safe, or did Valve store all of it's customer's details on a unconnected internet forum, regardless of whether you've signed up to it or not?

  • OrangesJoel #12 7 months ago

    Article subheading: "... encrypted credit card details compromised."
    Corresponding content: "We do not have evidence that encrypted credit card numbers or personally identifying information were taken by the intruders, or that the protection on credit card numbers or passwords was cracked. We are still investigating.

    ""We don't have evidence of credit card misuse at this time," the note continued."

    JOURNALISM.

  • Malek86 #13 7 months ago

    I don't get it. They say a database with "usernames and passwords and credit card data" has been accessed, but they also say they don't think any account was compromised.

    Unless credit card data was somehow connected to the forum accounts, I'm not sure how is it possible that Steam acounts haven't been compromised?

    Anyway.. ugh, changed my password just to be sure, and I'll need to keep an eye on my credit card movements in the next weeks. This sucks.
    Edited by Malek86 at 10/11/11 @ 23:05

  • tenebrae #14 7 months ago

    Good thing I guess that I don't do business with Valve with a credit card. All the hackers got was my email address; as far as I can recall my name and address details in Steam are all bogus.

  • apoc_reg #15 7 months ago

    No hint of an apology or disclosure in Steam itself?!?!!?

  • Heitzu #16 7 months ago

    Oh ffs...

  • steviepunk #17 7 months ago

    It seems they'll stop at nothing to avoid talking about Half Life 3...

  • ChrisOTR #18 7 months ago

    If you want to change your passwords as a precaution, it's three separate passwords - one for the forums, one for support, and one for Steam itself. I changed all three - can't be too careful! Oh and you can change your secret question and deactivate other authorised PCs with Steam guard. Maybe overkill but it doesn't do any harm - think of the value of all of the games in your Steam account!

  • johnson81 #19 7 months ago

    This is a fucking disgrace. Everyone slagged Sony off for waiting so long for telling the public and Steam have taken nearly a week and yet they get no shit. The software used for the forum was ridiculously out of date. Twats.

  • haruvister #20 7 months ago

    Yeah, but where is Episode 3?

  • HerrQwerty #21 7 months ago

    So .................. when's Episode 3 out?

  • HiddenAway #22 7 months ago

    @apoc_reg It's one of the Update News items you get when you log on to Steam:

    Edited by HiddenAway at 10/11/11 @ 23:15

  • Umang #23 7 months ago

    Can't even change my STEAM password atm... What a f'n JOKE!

  • ashmon #24 7 months ago

    @apoc_reg are you a complete retard?

    "I am truly sorry this happened, and I apologise for the inconvenience," Newell concluded.

  • hiddenranbir #25 7 months ago

    Just a little shout that having everything on Steam is not necessarily the best long term thing.

  • CaptainKid #26 7 months ago

    @HiddenAway
    It's not on the news tab.
    Strange.

    Off topic; so they made a new website but still no quote button? Come on!

  • grouch666 #27 7 months ago

    Johnson81 I totally agree!!! Considering credit cards are in there they should have said something immediately!!! Off with there heads!

  • Lunatic4ever #28 7 months ago

    wow,now I really wonder what the outcome of this is going to be for valve

  • CaptainKid #29 7 months ago

    @Umang
    I have no issues changing my STEAM (not forums) password.

  • Chufty #30 7 months ago

    Why are people slagging off Valve?

    The hackers got hashed+salted passwords (which are just useless text strings) and encrypted credit card numbers (which, without the encryption keys, are just useless text strings).

    If someone's hacked into your database, letting them get away with useless bits of text is a good result.

  • fillip2k #31 7 months ago

    GFWL live has never been hacked... Jus Sayin...

    Obvious trolling aside, I wonder if this will become as much of a "OH MY GOD STEAM ARE A DISGRACE, I HATE STEAM" blah blah blah situation as the PSN hack did. As generally people seem to be quite blinkered when it comes to certain companies and brands, and Steam/Valve seem to be one of those brands...

    Also wheres my free games, Sony gave me games when they got hacked...

    Oh and another thing, I have Steam set to login by its self when windows starts, I've not had any warning, if I hadn't read a tweet by an Ars Technica writer I would have had no idea. I've missed out on valuable righteous indignation! Shame on you Gabe Newell, shame on you...
    Edited by fillip2k at 11/11/11 @ 00:53

  • Stuz359 #32 7 months ago

    And people are predicting the death of the high street? Please.

  • ashmon #33 7 months ago

    @fillip2k YAY free games for everyone! more than likely free TF2 items......
    Edited by ashmon at 10/11/11 @ 23:28

  • Umang #34 7 months ago

    @CaptainKid been trying to change my steam password via the steam client for 10 minutes and It won't let me do it... :X @X

  • Fruit-Salad #35 7 months ago

    Post deleted at 01:35:51 08-02-2012

  • HiddenAway #36 7 months ago

    @CaptainKid It isn't there but the image I linked to appears when you log into Steam.

    It appears alongside any game adverts that pop up when you log into Steam using the client.

  • CaptainKid #37 7 months ago

    @Umang
    I'm just curious but where and how did you get stuck?

  • CaptainKid #38 7 months ago

    @HiddenAway
    It is also on the Steam Forums.

  • fillip2k #39 7 months ago

    @ashmon I have no use for TF2 hats, however if I was to get a free real hat, I'd be happy. Its cold outside and there's a recession on so ...erm... you know I can't afford one of my own...

  • wattsn26 #40 7 months ago

    @Chufty The credit card info on PSN was also encrypted. No one should be slagging off anybody except the hackers

  • Umang #41 7 months ago

    @CaptainKid I get stuck right after it asks me to enter my current password. Once I do so it says that it cannot currently process my request... FAIL!

  • Phoenisis #42 7 months ago

    Oh for fucks sake, not again. If companies insist on forcing players to sign up for proprietary networks in order to buy and play their games then they need to get their fucking security in order, there's no fucking excuse for this shit. This is the 3rd time this year alone that this has happened to networks that I've been forced to use in order to gain basic functionality. First PSN and Sega, and now this shit.

    Do NOT demand my personal details if you cannot absolutely guarantee its safety.

  • CaptainKid #43 7 months ago

    @Umang
    Weird.
    It went supersmooth on my end.
    Perhaps you should change your region?
    My region is Netherlands.
    It's the only thing I can think of why you have issues and I do not.

  • lockload #44 7 months ago

    @mr_pink Exactly cant believe a company would store customer purchase/billing data on the same server as the forums

    Either that or the valve servers/network are woefully open
    Edited by lockload at 10/11/11 @ 23:39

  • ashmon #45 7 months ago

    @fillip2k Hmmm thats a thought, Headcrab Hat

  • HiddenAway #46 7 months ago

    @CaptainKid You're right. Didn't spot it there when I looked as it was saying it was down for maintenance (as it has been since Sunday)

  • fillip2k #47 7 months ago

    @ashmon that would be awesome... I'm tired of sticking a raw chicken on my head and wondering around pretending to be one of the Half Life Zombie Horde... Plus my mum says its costing too much in chickens...

  • ajaxpliskin #48 7 months ago

    Out of all the corporations in the world to hack, you chose Valve.

    *Golf clap*

  • Hedja #49 7 months ago

    Why do all these companies neglect their security? After the Sony fiasco, you'd think at least the video game sector would get their shit together.

    Hopefully they used good salt and not an old hash algorithm... Otherwise, I guess it's time to think of a new password... AGAIN.

    The only problem I have with these intrusions is identity theft, I couldn't care less about the card details; no one should ever store card details online. How hard is it to get your card out an enter a few digits? Hell, just store it in a text file and copy and paste if you're not bothered, better than storing it online.

    I find it strange though, it seems the forums were only hacked... but how did they get card/address details?

    Get your shit together, Valve. Why do I need 3 different accounts for the same service? Integrate your site and provide a more central and robust security platform. Relying on an old version of vBulletin on such a large, costly service is ridiculous.

  • NewbieZilla #50 7 months ago

    @mr_pink Reading helps.

    "... it now turns out that the breach goes beyond just the message boards."

  • chessboxer #51 7 months ago

    Waiting for people to claim how they are going to sell their PCs now because Valve can't be trusted...

  • Sunyavadin #52 7 months ago

    Good thing I never buy anything on steam so my account has no useful data for them to steal, huh?

  • danidrums #53 7 months ago

    @ajaxpliskin "Out of all the corporations in the world to hack, you chose Valve.

    *Golf clap*"





    Best comment, ever!!!
    Edited by danidrums at 11/11/11 @ 04:15

  • Nova1977 #54 7 months ago

    Knowing Valve and after these hackers stole HL2, they're not gonna let this go, they will find these guys maybe not today or 6 months from now or even a couple of years...they will find you eventually. One day when this hacker is sitting with his wife, he'll be visited and he's life will be hacked by the CIA.

  • StooMonster #55 7 months ago

    @fillip2k

    Sony kept passwords in the clear and was it CC details too? I can't remember or be arsed looking it up if it was CC too, but in the clear passwords are dead easy for hackers to use.

    Valve's Steam passwords are salted/hashed and CC details encrypted, likely impossible for hackers to use in any way. Saying that, looks like vBulletin passwords might not be so strong -- perhaps that the problem with using third-party software as opposed to their own built system and why they have three IDs.

    Not blinkered, rather it's a significant difference between the two hacks -- encrypted vs clear passwords.

    Also, Steam popped up a notice last night after I quit a game I was playing. Seems like it's either inconsistent or easily missed.
    Edited by StooMonster at 11/11/11 @ 08:15

  • Widge #56 7 months ago

    Maybe CC details too? You don't sound terribly sure of the facts to be ruling judgements and comparisons.

  • SikoSoft #57 7 months ago

    Maybe now development companies (games/back-end/web/IT) will start to constantly have a group of security experts working along with the rest of the team throughout the whole project. Not just, the dev team building something and having a security audit, but a full blown group of security nuts in constant cooperation with the work-flow of the rest of the team.

  • mukki #58 7 months ago

    Let's see if they handle this better than Sony....

  • superdelphinus #59 7 months ago

    They're going to have to tighten up the legislation around this. Much more weight needs to be on customer data security.

    I think I've potentially had my data stolen four times in the last twelve months which is completely unacceptable.

  • GamesProgrammer Verified Games Team Programmer, Eutechnyx Ltd. #60 7 months ago

    Another company storing passwords in plain text, they encrypt the credit card details why not the passwords, or all the information for that matter?

    Is there a technical reason why they can only be hashed?

  • GamesProgrammer Verified Games Team Programmer, Eutechnyx Ltd. #61 7 months ago

    @StooMonster

    Sony said they also hashed there passwords, they were not stored in clear text, just plain text which means hashed, why cant these companies encrypt the passwords!

    This hack seems to be almost identical, clear text personal data, hashed passwords, encrypted credit card details, no fucking clue what has and hasn't been stolen. But im sure there will be many that slammed Sony that will defend Valve.
    Edited by GamesProgrammer at 11/11/11 @ 08:19

  • superdelphinus #62 7 months ago

    I'm not very knowledgeable about this sort of thing but why do they need to store credit card details at all on their side? Can't your computer/ browser just store them locally and auto complete?
    Edited by superdelphinus at 11/11/11 @ 08:11

  • GamesProgrammer Verified Games Team Programmer, Eutechnyx Ltd. #63 7 months ago

    @superdelphinus

    That wouldnt be a very good idea either, viruses could then easily get your credit card details from your web cache.

  • StooMonster #64 7 months ago

    @GamesProgrammer Not hashed and salted though, so crackable with a rainbow table?

  • Der_tolle_Emil #65 7 months ago

    @GamesProgrammer: Another company storing passwords in plain text, they encrypt the credit card details why not the passwords, or all the information for that matter?

    Who says the passwords were not encrypted? This database contained information including user names, hashed and salted passwords

    If they used a similar method like the vBulletin forum (if they are not talking about the vBulletin table) then this is very safe, because the salt is not stored in the database. If you hack the database you will also need access to the file system, otherwise you have to guess the password and the salt - virtually impossible.

    The hack is bad, but since the most important information was at least encrypted (passwords and credit card data, albeit the latter of course being reversible and not a hash) I am not that worried. This is why data gets encrypted - in case it gets stolen. That means that the data was prepared for the worst case scenario and working in this area as well I am pretty certain that Valve know what they are doing.

  • GamesProgrammer Verified Games Team Programmer, Eutechnyx Ltd. #66 7 months ago

    @Der_tolle_Emil

    Hashing is still considered Plain text, its not encryption and can be easily reversed, Clear text is the technical phrase for storing them as there written
    Edited by GamesProgrammer at 11/11/11 @ 08:24

  • StooMonster #67 7 months ago

    @GamesProgrammer This hack appears almost identical

    "What's worse is that every bit of data we took wasn't encrypted. Sony stored over 1,000,000 passwords of its customers in plaintext, which means it's just a matter of taking it." stated LulzSec.

    That doesn't sound the same at all.

  • GamesProgrammer Verified Games Team Programmer, Eutechnyx Ltd. #68 7 months ago

    @StooMonster

    Valves isn't encrypted data its hashed passwords just like PSN, its the same thing, if hashing is so secure why do both company's bother to encrypt credit card details, maybe because its not secure at all, and they wouldn't dream of doing something as stupid as storing credit card details as only hashed.

  • Der_tolle_Emil #69 7 months ago

    @GamesProgrammer: Hashing is still considered Plain text, its not encryption and can be easily reversed

    Uhm, tell me how to reverse this function:

    md5(md5(password) & md5(salt))

    Hashes are not reversible! You will not be able to go back to the password a user has to type on his keyboard to log in. (You might find another string that produces the same hash, but that's besides the point).

  • midnight_walker #70 7 months ago

    Looking forward to my selection of free Steam games!

  • GamesProgrammer Verified Games Team Programmer, Eutechnyx Ltd. #71 7 months ago

    @Der_tolle_Emil

    If its so secure then, why bother encrypting the credit card details, why not just save a load of cash on encryption software and just call the MD5 function from a python web script if its so amazingly secure?

  • Jolly_Armadillo #72 7 months ago

    Sunday? So that makes it 4-5days to announce? Or was it announced earlier and this is an update?

  • StooMonster #73 7 months ago

    @GamesProgrammer

    As pointed out many times above, Valves data was salted and hashed not just hashed.

    Difference between clear-text passwords, hashed passwords, and salted/hashed passwords explained well here http://dustwell.com/how-to-handle-passwords.html

  • Der_tolle_Emil #74 7 months ago

    @GamesProgrammer: Credit Card information cannot be hashed. Valve has to get the original data back because that is what the bank needs - hence the data is encrypted and can be decrypted. If you don't need to decrypt the data (why would you want to decrypt passwords if it's not necessary) storing information using hashes is (depending on the data) more secure. In case of user login information hashes and salts are the way to go.

  • midnight_walker #75 7 months ago

    @Der_tolle_Emil ((tlas)5dm & (drowssap)5dm)5dm

    Do I get a prize? :D

  • Der_tolle_Emil #76 7 months ago

    At least a +1 because you actually made me look up the function "tlas" before I realized what you did :D

  • GamesProgrammer Verified Games Team Programmer, Eutechnyx Ltd. #77 7 months ago

    @Der_tolle_Emil

    Fair enough makes sense.

    But as you say hackers may be able to make passwords that result in the same hash, and yet when i login to steam just now, there is no message telling me about the security breach, or anything recommending that i should change my password, let alone forcing me to change it.

    They seem happy enough try and sell me skyrim tho on every page with my compromised account.

  • mr_pink #78 7 months ago

    @NewbieZilla Quite true, reading does help.

    "We learned that intruders obtained access to a Steam database in addition to the forums"

    Note how it says 'database', not 'server'. Therefore it's likely that the database was on the same server as the hacked forums, the forums being the way in. This is a classic ploy, exploit a known hole in out-of-date open source software to gain server control.

    Either that or it's as @lockload suggests, that their inter-server security was non-existent. All in all, this is inexcusably bad security.
    Edited by mr_pink at 11/11/11 @ 09:12

  • Der_tolle_Emil #79 7 months ago

    But as you say hackers may be able to make passwords that result in the same hash

    That is true. However, first of all you need to know which hash function they used and that would mean you also need access to the code on the server. If you don't have the salt (which usually is also saved in files and not the database) then the amount of time needed to brute force is a lot higher as well because the salt makes even weak passwords like "a" "secure", at least when it comes to a brute force attack.

    It would take years to come up with a similar password that produces the same hash - if you change your password now they had exactly one week to generate a password and the chances of that happening are practically zero.

  • mr_pink #80 7 months ago

    @Chufty They didn't just get encrypted passwords and card numbers they also got your name, billing address, phone no. and email. Not a good result in my book.

    I'm sorry but as much as I love Valve, they deserve slagging off in this case.

    Not only that but who's to say the password/card salt value wasn't stored on the server somewhere as well? Nothing would surprise me at this point. With that the hackers could potentially decode those details.

    I'd suggest at the very least people change their Steam passwords. I'm holding off cancelling my card until I hear more but going through fraud claims with your bank is no picnic.

  • GamesProgrammer Verified Games Team Programmer, Eutechnyx Ltd. #81 7 months ago

    @Der_tolle_Emil

    Good to know, but still Steam should be prompting users to change there passwords.

    Also do you think Valve will be giving everyone free ID theft protection like Sony did for all the information that is stored in clear text?

    Or are we pretending this hack is no where near as severe even tho it seems they got away with all the same stuff, even if the passwords are slightly better protected.

    I know i personally felt safer the way Sony handled it, i.e. not letting anyone login till they got to the bottom of the problem, and forcing all users to change password as soon as they logged back in.

    Steam seems to just be business as usual, pretend nothings happened.

  • bladdard #82 7 months ago

    Interesting how EG were on Sony like shit when they had their breach but the steam breach which must also affect millions is much more low key.

  • AaronTurner #83 7 months ago

    The amount of times I am having to change my password these days is crazy.
    Hope they catch these nobs.

  • AaronTurner #84 7 months ago

    Think I'm going to start using the Steam wallet if it takes Pay Pal, seems a bit more secure. Until Paypal is hacked.

  • Der_tolle_Emil #85 7 months ago

    @GamesProgrammer: Or are we pretending this hack is no where near as severe even tho it seems they got away with all the same stuff, even if the passwords are slightly better protected.

    This hack should be taken very seriously. It is true that the hackers cannot do too much with the most sensible information (credit card, password) but they still got email addresses and phone numbers.

    However, never mind the data they had access to, I find their infrastructure far more worrying. Why does the server with the forum database even have access to such sensible information? As far as I know they hacked the forum - ok, these things happen. But how were they able to access the database with the personal information once they were on the server? Of course I don't know how they exactly got access but if it was because were able to access the data from the forum server then I think Valve should re-do their network configuration.
    Edited by Der_tolle_Emil at 11/11/11 @ 09:53

  • MikkyX #86 7 months ago

    SPAH SAPPIN' MAH SERVAH!

  • bad09 #87 7 months ago

    I think we should just go back to those oh so complicated game discs. No card details, no bloody log in details for these companies to waste huges sums of money protecting just buying a game and getting on with playing it with no risk. Madness I know but it might just work....

    The digital age is fast becoming and absolute pain in the arse that constantly puts your bank account in danger. Sometimes change isn't really for the better I think it's time we rolled back the clock.

  • AaronTurner #88 7 months ago

    Erm, is Steam taking an exceptionally long time to log in for anyone else? I've been sat at the connecting screen for nearly ten minutes now :(

  • Caimbeul #89 7 months ago

    For the love of god why are these irresponsible twats doing this? This benefits NOBODY. Why cant they just F' Off or do something constructive rather than destructive with their skills?

  • bad09 #90 7 months ago

    @AaronTurner

    I imagine 30 million people are all trying to change their passwords right now :)

  • fillip2k #91 7 months ago

    @StooMonster I can't quote sources I'll see if I can find them but from what I remember the details were encrypted in the PSN hack too. But even if the details are encrypted it still is a less than ideal situation then and now... and in principle is no less deserving if the derision that Sony received....

  • [maven] #92 7 months ago

    @GamesProgrammer

    If you're actually programming any games, can you tell us what they are so I can give them a wide berth?
    Because you have no idea what you're talking about...

  • R74NN #93 7 months ago

    I might be wrong, but wasn't it Mr. Newell, who invited hackers to try to breach their newly introduced security for Steam accounts? He was using words like "impossible" and such. Who is the winner then?

  • Der_tolle_Emil #94 7 months ago

    @R74NN: Two different things. He gave out his account details to prove that Steamguard will protect people from logging into their account even if someone else has their username and password.
    Edited by Der_tolle_Emil at 11/11/11 @ 12:16

  • R74NN #95 7 months ago

    @Der_tolle_Emil Yup, that's what I meant. And yes, you are right.

  • Liquidoodle #96 7 months ago

    God Damn Hackers! Well done to valve for handling it well so far, not like sony hiding it away scared of what to do about it.

  • blarty #97 7 months ago

    @GamesProgrammer Encryption and decryption is slow and laborious, and thus costly in terms of computation... so you only fully encrypt what you need to encrypt... otherwise they'd encrypt logins email addresses, etc.

  • daymun #98 7 months ago

    @FogHeart ooooo this get me all .... steamed .... up .......

    /runs away

  • HAL9000 #99 7 months ago

    Possibly some EA Origin employees looking to de-stabilise the established competition and hook people into their even more shocking service!

  • spunkythefunkymunkey #100 7 months ago

    Shocking double standards, Sony got absolutely lambasted for the same thing, all over the non gaming media too.
    Now don't get me wrong, I love Steam/Valve it's not them I'm aiming this at it is the absolute double standards of the gaming and non gaming press and fanboys. This news has hardly even registered on some gaming news sites never mind non gaming press, and I'd imagine Steam hold a lot more CC details than what Sony did.

    I doubt if I'm the only one thinking this and I was just gonna hold my tongue but it annoyed me too much. I think this is probably the correct reaction just that the PSN hacks were blown well out of proportion.
    Edited by spunkythefunkymunkey at 11/11/11 @ 15:48

  • arcam #101 7 months ago

    @spunkythefunkymunkey

    The Sony hack was big news because Sony were already in the middle of trying to prosecuting Geohot, and that itself was a big story in mainstream news and had got people riled up on gaming forums. Then the hack happened, apparently in retaliation, and the story just blew up. It was a war between Sony and hackers and so had all the drama for a big news story.

    This time, although it is big news for gamers, it's really just a another database being compromised, which happens all the time, and is not that interesting for the casual observer.

  • spunkythefunkymunkey #102 7 months ago

    @arcam Good points well made lol.
    That and the fact that outside of the gaming world few people will even have heard of Steam whereas everyone and their dog has heard of PlayStation.
    So yeah I suppose it's to be expected, but still even the gaming press are letting this one slide through relatively unnoticed.

  • Kaminari #103 7 months ago

    @Paul_cz Fucking Steam.

  • TagemandBagem #104 7 months ago

    Yes, the future is digital sales only!

  • sourc0r #105 7 months ago

    Bloody hackers. For Christ's sake, at least leave Steam alone!

  • jaec #106 7 months ago

    The big thing with PSN was when evidence suggested that the credit card details weren't encrypted. This turned out to be wrong, but Sony took way to long to confirm it. Still, it kind of forced me to bring my own passwords up to scratch and ensure I used different passwords on all sites. I'm glad I did that now, as it's less work to do this time round with only the one to change.
    Edited by jaec at 11/11/11 @ 19:21

  • Dave #107 7 months ago

    At least the HL3 source code is safe!

  • Ryze #108 7 months ago

    @Der_tolle_Emil

    Now I've just gotta find a Der_tolle_Emil grade lady to marry instead of all of these bimbos!

    ...and I'm not marrying a cow, either!

    :D

  • globalisateur #109 6 months ago

    So Valve did learn nothing when that guy stole (parts of) half life 2 in 2003.