The Steam Review

Comment and discussion on Valve Software’s digital communications platform.

Cybercafe card details stolen

No danger to other customers :: April 19th, 2007 :: Events, Valve :: 139 Responses (Feed)

You may by now have heard that “Steam” was broken into a week and a half ago and “consumer” credit card details stolen. As the quote marks suggest the breach has been played up by those behind it, whose exaggerations have been somewhat naively passed on by a number of big sites today. In actuality:

  • Steam was not compromised, only a regular Valve file server. In fact according to Valve it was a “third-party site” — though what sort of third party stores the sum in their corporate account I don’t know.
  • Consumer credit card information has not been stolen. The numbers in danger are all held by cybercafe owners, who have recurring subscriptions to their Steam games and have probably all long been informed (or not?). Consumer data are only stored in enough detail to fight mass fraud, not make purchases, and weren’t compromised anyway. Paying at a cafe does not put your card at risk.

All this will certainly make sure that when consumer subscriptions do arrive (as they will with Pirates of the Burning Sea) they’ll be properly secured, but given that it isn’t really a Steam issue there’s not much more for me to talk about. If you see anyone worrying, send them here!

Update: Valve’s statement, from 1UP:

There has been no security breach of Steam. The alleged hacker gained access to a third-party site that Valve uses to manage the commercial partners in its Cyber Café program. This Cyber Café billing system is not connected to Steam. We are working with law enforcement agencies on this matter, and encourage anyone with more information to e-mail us at catch_a_thief@valvesoftware.com.


139 Responses to this post:

31 Comments

  1. george_bush_fr Says:

    is there people who thinks that the hacker is “inside” valve corp ?
    my idea is : one gained access to the “main pc” from the valve intranet . as steam has a lot of traffic with a huge number of ips : servers and players [ 1 mn stat for steam page_stats ] , same personn from valve hacked emporio website to declare the ccard … , nice try to fool the “police” on the bad road 8] ……..

  2. Al3xand3r Says:

    Dur, even if you don’t know the exact content of the files it is very clear that they were aquired illegally and that the public isn’t meant to have them as they were provided as proof of the hack. Therefor, it was the smart thing to do, not providing a link to places that offer illegal content. On the other hand, it was also the smart thing to do, to inform people of the potential breach. I did the same thing on my site, though I explained myself thinking there may be people like you around Zips:
    http://www.mod-hq.com/index.php?page=news&article=370

    Also, I later found out they didn’t “pick 1UP” to unveil this, the message was posted on the steampowered forums, I only credited 1UP because it was the right thing to do as I saw it there first.

    Sorry for being late to respond to this crap with my view, I love this site, I just don’t have that much time these days.

  3. Loyst Says:

    I have buy game on steam. Is my credit card details stolen. Please pm to my email steam.

  4. Mike Says:

    Thanks for the Info. Never looked at my cc

  5. Tona Says:

    Haha ^^ nice, is there a section to follow the RSS feed

108 Trackbacks/Pings

  1. Halflife[2].nu v4 | NYHETER | Valve hackat, kontoinfo lckt*
  2. TweakGuides.com
  3. Test Server Central: Forums / General - Game Related / *Valve Hacked(Again)*
  4. =SiK= :: View topic - HUGE NEWS
  5. MaddoxX Released Information On Valve Being Hacked (All Customer's CCs Got Stolen) - Page 2 - X-Devs
  6. Myspace.com
  7. DigitalZone - A Counter-Strike Community
  8. If you've used a Credit Card on STEAM... (VALVe got hacked again)
  9. eGame - Community Clan of Makersfield - News
  10. Elite Jerks We Are All Jerks Deal With It Forums-viewtopic-Valve got hacked and CC#s got released.
  11. Loa-gaminG | Clanpage :: News
  12. The OldBoys Clan
  13. =Dynamite-Clan=
  14. Elite Jerks We Are All Jerks Deal With It
  15. PAL Gaming Network :: View topic - Steam Hacked
  16. Call of Duty | News: Gerchtekche Call of Duty 4, Steam-Erpressung... | GameCaptain.de
  17. Valve hacked .. again - Page 2 - Guru3D.com Forums
  18. Valve Hacked: Cafe Credit Cards Compromised by Video Games
  19. Steam HACKED. - MMORPG Development Forums - RaGEZONE
  20. » Blog Archive » Valve Hacked: Cafe Credit Cards Compromised - http://games.napsurf.com
  21. Half-Life 2: Spiele-Vertriebssystem ist angeblich gehackt worden
  22. Willkommen beim Tactical Assault Team | Multigaming since 2004 :: News
  23. ́́ steam... Part8 ́́
  24. TWHL: Half-Life WorldCraft / Hammer Mapping Tutorials and Resources
  25. Steam Not Hacked - NZFortress - New Zealand's Team Fortress Community
  26. TM-FORUM :: View topic - TMU will be sold on the Steam Platform!!!
  27. ~.Lost Soldiers Berlin.~ - Valve: Gehackt? Screens sind da!
  28. ReD-FoX4u.eu | We W!ll R0cK YoU | #ReD-FoX4u | r0ckZ*cz | sTyLz*cz :: News
  29. bit-tech.net | Steam not hacked, third party Cyber Cafe server compromised
  30. Hateworx.org | Games, Konsolen,Hightech,etc. | Steam Datenbank gehackt?
  31. Valve hacked again? Thread - Mod DB
  32. Spiele-Vertriebssystem Steam offenbar gehackt - PC-Spiele / Konsolen - Movie2Digital - Technik Forum (powered by GNC)
  33. Steam Hacked
  34. GameBanana: The Truth about the Steam Hacking. (Forums > Steam > Other/Misc > The Truth about the Steam Hacking.)