Lancer Posted November 7, 2011 Share Posted November 7, 2011 Steam Forums Apparently Hacked Last night, the forums for Valve's Steam service were apparently hacked. Redirects for a hacking website, Fkn0wned.com, appeared on the Steam Users' Forums, offering "hacking tutorials and tools, porn, free giveaways and much more." It's not clear who hacked the forums, but Fkn0wned.com is denying responsibility, writing this on its own site: "Fkn0wned Forum is currently unavailable In lights of someone crediting us for the recent breaches of steam forums, the board is offline. Fkn0wned is not responsible." Some users reported getting email spam apparently from Fkn0wned.com after the hack, and the forums are, at the time of posting, offline. The Steam User's Forums and the Steam service account passwords are separate, but some users might use the same handles and passwords across both. If that pertains to you, it might be a good idea to change your Steam account password. And pronto. Dá impressão de que foi apenas minor defacing dos forums. Nada de user info leaks tanto quanto se sabe até agora. Link to comment Share on other sites More sharing options...
Mini0n Posted November 7, 2011 Share Posted November 7, 2011 Que mau... Terá sido vingança ou foi à Steam tipo random? Link to comment Share on other sites More sharing options...
royaltartufo Posted November 10, 2011 Share Posted November 10, 2011 Here’s the official statement: Dear Steam Users and Steam Forum Users: Our Steam forums were defaced on the evening of Sunday, November 6. We began investigating and found that the intrusion goes beyond the Steam forums. We learned that intruders obtained access to a Steam database in addition to the forums. This database contained information including user names, hashed and salted passwords, game purchases, email addresses, billing addresses and encrypted credit card information. We do not have evidence that encrypted credit card numbers or personally identifying information were taken by the intruders, or that the protection on credit card numbers or passwords was cracked. We are still investigating. We don’t have evidence of credit card misuse at this time. Nonetheless you should watch your credit card activity and statements closely. While we only know of a few forum accounts that have been compromised, all forum users will be required to change their passwords the next time they login. If you have used your Steam forum password on other accounts you should change those passwords as well. We do not know of any compromised Steam accounts, so we are not planning to force a change of Steam account passwords (which are separate from forum passwords). However, it wouldn’t be a bad idea to change that as well, especially if it is the same as your Steam forum account password. We will reopen the forums as soon as we can. I am truly sorry this happened, and I apologize for the inconvenience. Gabe. Por segurança vou mas é modificar o meu numero de cartao credito Link to comment Share on other sites More sharing options...
Lancer Posted November 11, 2011 Author Share Posted November 11, 2011 Hack: Steam Database Compromised We’ve just had a note from Gabe Newell saying: “Our Steam forums were defaced on the evening of Sunday, November 6. We began investigating and found that the intrusion goes beyond the Steam forums.” We learned that intruders obtained access to a Steam database in addition to the forums. This database contained information including user names, hashed and salted passwords, game purchases, email addresses, billing addresses and encrypted credit card information. We do not have evidence that encrypted credit card numbers or personally identifying information were taken by the intruders, or that the protection on credit card numbers or passwords was cracked. We are still investigating. It might be a good idea to change your Steam password, clearly. Full text below. The following is being IM’d to the Steam user base. ———————- Dear Steam Users and Steam Forum Users, Our Steam forums were defaced on the evening of Sunday, November 6. We began investigating and found that the intrusion goes beyond the Steam forums. We learned that intruders obtained access to a Steam database in addition to the forums. This database contained information including user names, hashed and salted passwords, game purchases, email addresses, billing addresses and encrypted credit card information. We do not have evidence that encrypted credit card numbers or personally identifying information were taken by the intruders, or that the protection on credit card numbers or passwords was cracked. We are still investigating. We don’t have evidence of credit card misuse at this time. Nonetheless you should watch your credit card activity and statements closely. While we only know of a few forum accounts that have been compromised, all forum users will be required to change their passwords the next time they login. If you have used your Steam forum password on other accounts you should change those passwords as well. We do not know of any compromised Steam accounts, so we are not planning to force a change of Steam account passwords (which are separate from forum passwords). However, it wouldn’t be a bad idea to change that as well, especially if it is the same as your Steam forum account password. We will reopen the forums as soon as we can. I am truly sorry this happened, and I apologize for the inconvenience. Gabe. confirma-se o pior Link to comment Share on other sites More sharing options...
cyberurbis Posted November 11, 2011 Share Posted November 11, 2011 (edited) fuck me... toca de mudar a password, e afins... só me dão trabalho não remunerado estes hackers! Edited November 11, 2011 by cyberurbis Link to comment Share on other sites More sharing options...
EsCk Posted November 11, 2011 Share Posted November 11, 2011 FDX.. pó crl! Já tive que mudar a password uma vez por algo semelhante na Steam. Link to comment Share on other sites More sharing options...
Mini0n Posted November 11, 2011 Share Posted November 11, 2011 Fdx fdps do crl. Link to comment Share on other sites More sharing options...
Lancer Posted November 11, 2011 Author Share Posted November 11, 2011 Ao menos o Steam tem outros mecanismos de defesa os danos podiam ter sido equivalentes aos do hack à PSN. A minha menor preocupação neste momento é a conta de Steam já que eles tem o Steam Guard para além do mecanismo normal (apesar disso troquei a minha pass pelo sim pelo não). Mas continua a ser muito mau. Não percebo é como é que continuam a guardar dados pessoais não encriptados numa unica base de dados sabendo o que aconteceu à PSN e a outros. Por muito que eles digam o contrário, o billing address contem dados pessoais (nome, morada, contacto fazem parte do billing address). PunK_BoY chamado ao serviço! Existe algum procedimento jurídico que se deva seguir neste tipo de situação? Alguma coisa que se possa fazer? A Valve falhou, não devíamos ser compensados? Link to comment Share on other sites More sharing options...
JP-- Posted November 11, 2011 Share Posted November 11, 2011 Tenho lá o meu cc... E vi agora que nem opção para eliminar esses dados tenho Link to comment Share on other sites More sharing options...
Lancer Posted November 11, 2011 Author Share Posted November 11, 2011 é triste ir alterar a pass ao paypal como medida de segurança e aparecer esta mensagem: "Password: Your password must contain between 8 and 20 characters. Please enter a shorter password." Link to comment Share on other sites More sharing options...
royaltartufo Posted November 11, 2011 Share Posted November 11, 2011 Tenho lá o meu cc... E vi agora que nem opção para eliminar esses dados tenho E consegui na boa Link to comment Share on other sites More sharing options...
Lancer Posted November 12, 2011 Author Share Posted November 12, 2011 possível fake mas.... Link to comment Share on other sites More sharing options...
Lancer Posted November 15, 2011 Author Share Posted November 15, 2011 Valve: Your credit card information was not securely encrypted, and we do not want you to know that. http://steamunpowered.eu/valve-your-credit-card-information-was-not-securely-encrypted-and-we-do-not-want-you-to-know-that Link to comment Share on other sites More sharing options...
royaltartufo Posted November 15, 2011 Share Posted November 15, 2011 Comigo agora compras na Steam só de MBnet Link to comment Share on other sites More sharing options...
iNSPiRE Posted November 15, 2011 Share Posted November 15, 2011 Eu na Steam só comprei de MBNet. De qualquer das maneiras, loguei para ver se removia as informações de pagamento e não encontrei a opção. Link to comment Share on other sites More sharing options...
royaltartufo Posted November 15, 2011 Share Posted November 15, 2011 Link to comment Share on other sites More sharing options...
Kinas_ Posted November 15, 2011 Share Posted November 15, 2011 Quando andava pelo WoW foi sempre, mas sempre, por MBNet. E sempre que é possível: MBNet > Paypal > Moneybookers > Transferência Bancária >>>>>>>>>>>>>> Cartão Crédito Link to comment Share on other sites More sharing options...
JP-- Posted November 15, 2011 Share Posted November 15, 2011 Fds reparei agora. O meu cartão foi renovado há uns meses e nunca cheguei a actualizar na Steam. De falta de utilização já não fazia parte da BD deles. Link to comment Share on other sites More sharing options...
roubagalinhas Posted November 17, 2011 Share Posted November 17, 2011 (edited) eu tb nao tenho lá cartões de credito. das primeiras vezes ainda usei mbnet, mas depois passei a usar só paypal quanto ao fantástico forum nunca consegui verificar a minha conta, mesmo depois de andar à turra com o suporte, simplesmente nao recebo os mails de verificação Edited November 17, 2011 by roubagalinhas Link to comment Share on other sites More sharing options...
iNSPiRE Posted November 18, 2011 Share Posted November 18, 2011 Obrigado, mas a questão era como chegar aí. :P Lá dei umas voltas e descobri. Settings -> Conta -> Historial de Conta ou lá o que é. Entretanto já fechei o Steam e não me apetece voltar a abrir, mas fica a informação para quem quiser. :y: Obrigado, royal. Link to comment Share on other sites More sharing options...
EsCk Posted November 18, 2011 Share Posted November 18, 2011 Eu nem há pouco tempo tinha usado pela primeira vez o meu cartão para comprar o pack do GTA Link to comment Share on other sites More sharing options...
Green Hawk Posted November 18, 2011 Share Posted November 18, 2011 Eu só usei MBNet.... Link to comment Share on other sites More sharing options...
Lancer Posted February 10, 2012 Author Share Posted February 10, 2012 10 February 2012 Dear Steam Users and Steam Forum Users: We continue our investigation of last year’s intrusion with the help of outside security experts. In my last note about this, I described how intruders had accessed our Steam database but we found no evidence that the intruders took information from that database. That is still the case. Recently we learned that it is probable that the intruders obtained a copy of a backup file with information about Steam transactions between 2004 and 2008. This backup file contained user names, email addresses, encrypted billing addresses and encrypted credit card information. It did not include Steam passwords. We do not have any evidence that the encrypted credit card numbers or billing addresses have been compromised. However as I said in November it’s a good idea to watch your credit card activity and statements. And of course keeping Steam Guard on is a good idea as well. We are still investigating and working with law enforcement authorities. Some state laws require a more formal notice of this incident so some of you will get that notice, but we wanted to update everyone with this new information now. Gabe encrypted billing addresses and encrypted credit card information Pronto estão desculpados. Link to comment Share on other sites More sharing options...
EsCk Posted February 10, 2012 Share Posted February 10, 2012 O vídeo postado no tópico dos Anonymous, com o FBI e a Scotland Yard a falarem do puto que disse que tinha sido ele a crackar a Steam, pode estar relacionado com isto.. Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now