Steam hacked, personal info potentially at risk

Valve’s popular digital download service, Steam, has been the victim of a hacking attack that has left users’ personal information – including credit card details – at risk.

Company boss Gabe Newell confirmed as much in a recently-issued statement. “I am truly sorry this happened and I apologize for the inconvenience,” he said.

“Our Steam forums were defaced on the evening of Sunday, November 6. We began investigating and found that the intrusion goes beyond the Steam forums.

“We learned that intruders obtained access to a Steam database in addition to the forums. This database contained information including user names, hashed and salted passwords, game purchases, email addresses, billing addresses and encrypted credit card information. We do not have evidence that encrypted credit card numbers or personally identifying information were taken by the intruders, or that the protection on credit card numbers or passwords was cracked. We are still investigating.”

This incident is of course painfully reminiscent of the PSN hack that took place earlier in the year. Newell issued similar warnings to what Sony had at that time: “We don’t have evidence of credit card misuse at this time. Nonetheless you should watch your credit card activity and statements closely.”

Steam forum users will be required to change passwords when everything is back up, but Newell has pleaded for everyone to do the same for their entire Steam account. As for the forums, it wasn’t announced when they would be returning other than the promise of it being as soon as possible.