Install Steam
login
|
language
简体中文 (Simplified Chinese)
繁體中文 (Traditional Chinese)
日本語 (Japanese)
한국어 (Korean)
ไทย (Thai)
Български (Bulgarian)
Čeština (Czech)
Dansk (Danish)
Deutsch (German)
Español - España (Spanish - Spain)
Español - Latinoamérica (Spanish - Latin America)
Ελληνικά (Greek)
Français (French)
Italiano (Italian)
Bahasa Indonesia (Indonesian)
Magyar (Hungarian)
Nederlands (Dutch)
Norsk (Norwegian)
Polski (Polish)
Português (Portuguese - Portugal)
Português - Brasil (Portuguese - Brazil)
Română (Romanian)
Русский (Russian)
Suomi (Finnish)
Svenska (Swedish)
Türkçe (Turkish)
Tiếng Việt (Vietnamese)
Українська (Ukrainian)
Report a translation problem
Discussions Rules and Guidelines
Report this post
https://www.theguardian.com/technology/2014/may/30/steam-valve-password-hack-stolen-botnet-malware
Still at least I know my own machines were never infected by this stuff, being regularly cleaned and defended by using antimalware systems. However I never considered the vulnerability of the marketplace system for buying and selling cards and stuff.
Guess it was inevitable that the data would be farmed out eventually.
You are so mistaken about Steam privacy and security.
Do you have the Steam Guard?
You do know and understand how that works?
It says if you choose to ignore the security protocols of Steam you will be hacked or your account stolen.
Also Valve owns Steam.
What is the Steam Guard Mobile Authenticator?
https://support.steampowered.com/kb_article.php?ref=8625-wrah-9030
https://haveibeenpwned.com/
Yes in the 'early days' Steam suggested your login. No it was not your email because that would be so blatantly hackable but hey. Simply, when registering for the first time you entered your chosen login - inevitably unavailable because it was already taken by someone else - and Steam took your choice and gave you some options based on your original entry. As many websites do. Perhaps you haven't been around long enough to notice this.
Hence your login name was effectively chosen by Steam.
Valve owns Steam. Right. So what. Microsoft own Skype. And how does this affect anything.
As Ripley said 'Perhaps IQ's have dropped since I've been away!" 'So mistaken ... LOL'
So yeah email and login are stored in a DB on a Steam server somewhere. But I've never received a spam email which used my login name. So that would imply a definitive connection to Steam.
I often use random emails from my domains for registration eg on slightly suspect sites for downloading freebies or registrations to track spam sources. That way you know who is selling the information on. Then I can easily kill off a spam source by simply removing the email address from the email server at which point it will be bounced back indefinitely.
Clearly at some point the information was extracted and dumped on the web. Along with that from LinkedIn, or BA or any other large corps in the last 15 years. I just hadn't notice that they had been hacked previously -an oversight by me - on the Wiki list of major hacked sites. Rarely are the logins directly connected to personal data i.e. side by side on a DB system - for security. In the same way you don't keep CC data in a giant spreadsheet with names addresses and email addresses.
https://en.wikipedia.org/wiki/List_of_data_breaches
Maybe it's not considered that major. 35,000,000 possible entries lost in 2011. There's little financial info stored by Steam's systems so not that critical maybe?
If possible, I'll change the login ID linked to the account, rather than just the avatar name which chanes nothing useful. Then I can at least see if it happens again.