Yeah you're right ... seems that hwcdn stands for Highwinds Content Delivery Network ... and it is a Content Hosting Site like Amazon Web Services, Akamaihd and so on ... maybe its to distribute the load and relieve the servers.

Thank you for the hint =) ... i guess that seems legit and i dont have to worry

Also getting the error in Chrome telling me "steamstore-a.akamaihd.net" is a reported phishing site...

I'm having the same problem

Same here.

Im scanning my pc w/malwarebytes atm to see if it's any virus/phish, if not then chrome may just not like it.

I'm not seeing this error in Chrome, but I'm using 31.0.1650.63.m

Also mentioned in:
http://steamcommunity.com/discussions/forum/1/666828126575222473/

Try updating Chrome to latest version, as well as any plugins u might be using, such as Chrome AdBlock. If you use app/plugin like AdBlock, update the definitions too.

I'm using Chrome v31.0.1650.63m on Win7 and not having any such issues in regards to it warning me that it is a possible phishing site.

Thanks for the suggestion but im not using Chrome ;) ... noticed this with Firefox, IE 10 and with Android Stock Browser.

These Browsers do not warn me or anything ... i myself noticed this because of NoScript

In Firefox, press ALT key, then click Help and About
That should check for FF updates.

As far as IE, even if u don't use that, u should update it via Windows Updates.

If u want full access to Steam Store in Android, I suggest using the Steam Mobile App Client for that.

Also if u have Spybot S&D, that might have blacklisted the site, which could be a reason it might have an issue displaying correctly under IE or FF, as it doesn't support Chrome.

The browsers are all up to date, i used IE in a VM just to check the page. I used the Android Browser to rule out any problems with DNS since i was trying it over UMTS.

And as I already said, i get no warnings, i found it by looking into the source of the loginpage since NoScript suddently mentioned that an additional domain has to be whitelisted. Because the login.js needed when the login button called the loginDo function is no longer on steampowered.com but on hwcdn.net and akamaihd.com respectively.

Also i haven't got Spybot S&D since im running ArchLinux =)

But thank you for your help.

I also have *hwcdn* in my NoScript notification - however ONLY if I am connected through my university's VPN which I accidentally had activated.

I would recommend to be less paranoid in general or at least be less paranoid in terms of Steam.
Just allow all Javascript for all Steam domains. Problem solved.

http://www.highwinds.com/gdn/customers.php -> Valve/Steam
->

Highwinds provides content delivery infrastructure to Valve as part of their global strategy to expand and support Steam, the world's largest online gaming platform. Valve, a long-time Highwinds customer, is experiencing exponential growth with Steam, and the Highwinds GDN is contributing to the platform's global reach and popularity.

Using Chrome, never gotten warning about phishing.
At the moment the store shows me that JS is loaded from:
http://cdn4.store.steampowered.com/public/shared/javascript/