Valve has dismissed widespread reviews of an information breach that supposedly compromised the account particulars of over 89 million Steam customers.
In a short however agency put up, Valve mentioned it has examined the leaked knowledge and confirmed that Steam’s techniques had not been breached, and customers didn’t want to alter their passwords or cellphone numbers.
The leak consisted of outdated textual content messages containing one-time authentication codes that had all expired. These have been linked to the cellphone numbers they have been despatched to, however the cellphone numbers weren’t linked to any account particulars.
“The leaked knowledge didn’t affiliate the cellphone numbers with a Steam account, password data, fee data or different private knowledge,” Valve mentioned. “Previous textual content messages can’t be used to breach the safety of your Steam account, and at any time when a code is used to alter your Steam e mail or password utilizing SMS, you’ll obtain a affirmation by way of e mail and/or Steam safe messages.
“You do not want to alter your passwords or cellphone numbers on account of this occasion. It’s a good reminder to deal with any account safety messages that you haven’t explicitly requested as suspicious.”
Valve mentioned it has not decided the supply of the leak, noting that SMS messages like these leaked are unencrypted and move by a number of suppliers. Earlier reviews had advised {that a} vendor utilized by Valve to ship the authentication codes was the supply.
In line with the preliminary reviews, corresponding to this LinkedIn put up by Underdark.ai, the info had been posted on the darkish internet on the market at a worth of $5,000.
So, we will all relaxation straightforward. But it surely’s a great reminder to activate two-factor authentication for Steam (and all of your on-line accounts), and to be suspicious of unsolicited messages.
