Chinese spyware concern :: Suggestions / Ideas

Todas las discusiones > Foros de Steam > Suggestions / Ideas > Detalles del tema

Este tema ha sido cerrado

FreshOffTheBoat 19 AGO 2020 a las 12:42 p. m.

Chinese spyware concern

Hello, Steam company!

I've been a supporter of Steam for a pretty long time, and I've purchased many video games to support indie game developers. But recently, when I use the Steam platform, I started worrying about the spyware from China.

As we all know, Chineses (or the CCP) have stolen the US technologies to make their own products. Furthermore, we can easily see the Chinese games that are straight copy cat games on the Steam market. One of methods they are using to steal US technologies is through spyware. They even modified hardware (i.e. server computer motherboard) to steal important information from the US company. And right now, I have a feeling that there might be Chinese games, which have hidden spyware, on the Steam market.

There are many games that install their own launcher - or require admin permissions to do something (i.e. startup services). This raises me a very important question: Does Steam (the company) have an internal system that verifies/checks if the game has spyware or not? Also, does Steam check if the game collects some information from the victim's computer and sends them to the server in China?

I'd love to see the effort that Steam is trying to find and eliminate games with spyware. And I really hope this message would be delivered to not just forum moderators but also executives of the Steam board.

(if this message gets deleted, I will consider the Steam market is compromised)

Thank you,

with love, BitcoinBTC.

< >

Mostrando 1-15 de 37 comentarios

Satoru 19 AGO 2020 a las 12:51 p. m.

complains about malware

advertises bitcoin malware

has offensive racist profile name

The hypocrisy would be hilarious if it was so obviously bad

Última edición por Satoru; 19 AGO 2020 a las 12:56 p. m.

FreshOffTheBoat 19 AGO 2020 a las 12:53 p. m.

Publicado originalmente por Satoru:
complains about malware

advertises bitcoin malware

has offensive racist profile name

Please go jump into a vat of acid

Do not attack the messenger, see the message.

Crazy Tiger 19 AGO 2020 a las 12:54 p. m.

Publicado originalmente por FreshOffTheBoat:
(if this message gets deleted, I will consider the Steam market is compromised)

You're an idiot, OP.

FreshOffTheBoat 19 AGO 2020 a las 12:56 p. m.

Publicado originalmente por Crazy Tiger:
Publicado originalmente por FreshOffTheBoat:
(if this message gets deleted, I will consider the Steam market is compromised)

You're an idiot, OP.

I am pointing out valid concerns as business perspective.

Satoru 19 AGO 2020 a las 12:56 p. m.

Publicado originalmente por FreshOffTheBoat:

Do not attack the messenger, see the message.

I will attack the messenger when they're racist

I will attack the messenger when they're a hypocrite

I will attack the messenger when their message is racist

Publicado originalmente por FreshOffTheBoat:
I am pointing out valid concerns as business perspective.

No you're pointing out you're a racist hypocrite

Última edición por Satoru; 19 AGO 2020 a las 12:57 p. m.

Washell 19 AGO 2020 a las 12:58 p. m.

Don't game on a system with confidential information. Period.

Other vulnerabilities that are favorite attack vectors? The personal devices employees bring into the office on which they've allowed their kids to load Steam games, and which the workers then connect to the network.

https://www.wired.com/2016/01/nsa-hacker-chief-explains-how-to-keep-him-out-of-your-system/

Publicado originalmente por FreshOffTheBoat:
(if this message gets deleted, I will consider the Steam market is compromised)

It is. And not only by China, but many other government agencies.

Edit: To explain myself:
Most games have an online component.
A lot of games are developed by small teams on a tight budget.
Now extrapolate how many of those hire a security consultant, do proper penetration testing or otherwise develop their online component with security in mind, rather than giving the player the best experience.

Última edición por Washell; 19 AGO 2020 a las 1:03 p. m.

Crazy Tiger 19 AGO 2020 a las 12:58 p. m.

Publicado originalmente por FreshOffTheBoat:
Publicado originalmente por Crazy Tiger:

You're an idiot, OP.
I am pointing out valid concerns as business perspective.

No, you're fearmongering without proof. And you create a false safeguard. Read the discussion lines and see the part about politics being a subject not to discuss on Steam.

If the thread gets deleted, it's because it's against the rules. Not because Steam is "compromised". You're trying to take Steam hostage to "force" them to keep your thread up by adding such a stupid line.

Última edición por Crazy Tiger; 19 AGO 2020 a las 1:00 p. m.

FreshOffTheBoat 19 AGO 2020 a las 1:02 p. m.

Publicado originalmente por Washell:
Don't game on a system with confidential information. Period.
Other vulnerabilities that are favorite attack vectors? The personal devices employees bring into the office on which they've allowed their kids to load Steam games, and which the workers then connect to the network.
https://www.wired.com/2016/01/nsa-hacker-chief-explains-how-to-keep-him-out-of-your-system/

Yeah, I have several computers for its own purpose - but that's not my point here. The point here is that if Steam has a spyware detection system or not to filter out games before listing on the market.

Última edición por FreshOffTheBoat; 19 AGO 2020 a las 1:03 p. m.

FreshOffTheBoat 19 AGO 2020 a las 1:04 p. m.

Publicado originalmente por Crazy Tiger:
Publicado originalmente por FreshOffTheBoat:
I am pointing out valid concerns as business perspective.
No, you're fearmongering without proof. And you create a false safeguard. Read the discussion lines and see the part about politics being a subject not to discuss on Steam.

If the thread gets deleted, it's because it's against the rules. Not because Steam is "compromised". You're trying to take Steam hostage to "force" them to keep your thread up by adding such a stupid line.

Talking about Chinese spyware is not politics. It's a reality.

Última edición por FreshOffTheBoat; 19 AGO 2020 a las 1:05 p. m.

FreshOffTheBoat 19 AGO 2020 a las 1:05 p. m.

Publicado originalmente por Satoru:
Publicado originalmente por FreshOffTheBoat:

Do not attack the messenger, see the message.

I will attack the messenger when they're racist

I will attack the messenger when they're a hypocrite

I will attack the messenger when their message is racist

Publicado originalmente por FreshOffTheBoat:
I am pointing out valid concerns as business perspective.

No you're pointing out you're a racist hypocrite

I am going to ignore triggered snowflakes.

#10

Washell 19 AGO 2020 a las 1:06 p. m.

Publicado originalmente por FreshOffTheBoat:
Yeah, I have several computers for its own purpose - but that's not my point here. The point here is that if Steam has a spyware detection system or not to filter games before listing on the market.

Protocols to detect malware before distributing software have been set up and refined over decades now, and are applied by Valve and all other online distributors. Being the source of an infection can literally bankrupt the company due to lost trust and thus a decline in sales, and litigation. They spend on it.

That said, they're not going to beat state sponsored actors determined to get in.

Publicado originalmente por Crazy Tiger:
Not because Steam is "compromised".

The NSA has said it is.

Última edición por Washell; 19 AGO 2020 a las 1:07 p. m.

#11

Radene 19 AGO 2020 a las 1:07 p. m.

You're pushing way too hard, OP. Go away with your nonsense.

#12

AustrAlien2010 19 AGO 2020 a las 1:10 p. m.

Everything you should know is written in the SSA.
https://store.steampowered.com/subscriber_agreement/
Any other software you may purchase may heve it's own SSA.

There is also a privacy agreement.
https://store.steampowered.com/privacy_agreement/

Última edición por AustrAlien2010; 19 AGO 2020 a las 1:38 p. m.

#13

FreshOffTheBoat 19 AGO 2020 a las 1:11 p. m.

Publicado originalmente por Washell:
Publicado originalmente por FreshOffTheBoat:
Yeah, I have several computers for its own purpose - but that's not my point here. The point here is that if Steam has a spyware detection system or not to filter games before listing on the market.
Protocols to detect malware before distributing software have been set up and refined over decades now, and are applied by Valve and all other online distributors. Being the source of an infection can literally bankrupt the company due to lost trust and thus a decline in sales, and litigation. They spend on it.

That said, they're not going to beat state sponsored actors determined to get in.

That's a good point - yeah, I assume Steam (or Valve) has the protocol. But I want to verify the protocol / the system as a consumer. For example, the recent iOS has new privacy updates so that users can see what's going on behind the app (i.e. collecting clipboard data). I want to have a piece in mind when I play Chinese/Russian/foreign games. That's all I want as a consumer.

#14