Valve has dismissed widespread experiences of a knowledge breach that supposedly compromised the account particulars of over 89 million Steam customers.
In a temporary however agency submit, Valve stated it has examined the leaked knowledge and confirmed that Steam’s programs had not been breached, and customers didn’t want to alter their passwords or telephone numbers.
The leak consisted of outdated textual content messages containing one-time authentication codes that had all expired. These had been linked to the telephone numbers they had been despatched to, however the telephone numbers weren’t linked to any account particulars.
“The leaked knowledge didn’t affiliate the telephone numbers with a Steam account, password info, cost info or different private knowledge,” Valve stated. “Outdated textual content messages can’t be used to breach the safety of your Steam account, and at any time when a code is used to alter your Steam e mail or password utilizing SMS, you’ll obtain a affirmation through e mail and/or Steam safe messages.
“You do not want to alter your passwords or telephone numbers on account of this occasion. It’s a good reminder to deal with any account safety messages that you haven’t explicitly requested as suspicious.”
Valve stated it has not decided the supply of the leak, noting that SMS messages like these leaked are unencrypted and cross by means of a number of suppliers. Earlier experiences had recommended {that a} vendor utilized by Valve to ship the authentication codes was the supply.
In accordance with the preliminary experiences, reminiscent of this LinkedIn submit by Underdark.ai, the info had been posted on the darkish internet on the market at a value of $5,000.
So, we will all relaxation straightforward. However it’s a great reminder to activate two-factor authentication for Steam (and all of your on-line accounts), and to be suspicious of unsolicited messages.
