This forum uses cookies

Judge Rage · **Dec 26, 2015, 12:04 AM**

Okay so, if you go into the store on Steam it will put you into someone's else's account - Valve haven't yet said anything, but it looks like they've shut the Steam store down. Make sure your account is safe.

Sorry this isn't very long, just wrote the basics. If you want to know more, read one of the sources.

Source: https://www.theverge.com/2015/12/25/1066...y-problems
https://kotaku.com/steam-goes-nuts-offer...1749718979

**Bambo** · **Dec 26, 2015, 12:17 AM**

Thanks for sharing, at one point I had 20£ on my account it was exciting!

Also bad because adresses and credit card information could be slightly seen

jarz · **Dec 26, 2015, 12:42 AM**

Reddit has gone off the hook.
/r/steam

Also, make sure your phone number is not changed, and that you have mobile authenticator on.

IF YOU HAVE A CREDIT/DEBIT HOOKED TO YOUR STEAM ACCOUNT, TRANSFER THE FUNDS FROM SAID CARD TO A SAFE ACCOUNT. IF YOU DON'T, YOU RISK HAVING SAID FUNDS PROCESSED INTO STEAM CASH, THUS MAKING IT IMPOSSIBLE TO GET IT BACK ON YOUR CARD.

evilmat360 · **Dec 26, 2015, 12:45 AM**

gg Valve. Best advice atm is just stay off steam. Client isnt able to connect anyway it seems atm.

Voluptious · **Dec 26, 2015, 03:28 AM**

Steam is beeing hit with a MASSIVE DDos atm, would probably knock us off for months if WE got the full force of it. Due to this heavy load this glitch happens. Valve themselves have suggested to stay off the store for now. Its only transactions that are affected, not stored credit cards.

My source here

Judge Rage · **Dec 26, 2015, 04:48 AM**

(Dec 26, 2015, 12:42 AM)jarz Wrote: Reddit has gone off the hook.
/r/steam

Also, make sure your phone number is not changed, and that you have mobile authenticator on.

IF YOU HAVE A CREDIT/DEBIT HOOKED TO YOUR STEAM ACCOUNT, TRANSFER THE FUNDS FROM SAID CARD TO A SAFE ACCOUNT. IF YOU DON'T, YOU RISK HAVING SAID FUNDS PROCESSED INTO STEAM CASH, THUS MAKING IT IMPOSSIBLE TO GET IT BACK ON YOUR CARD.

I read advice on Reddit to phone up your credit card company and ask to block all transactions with Valve Corporation.

Course, I don't use credit or debit cards so I'm fine. Thank god it's all over now.

**Decay** · **Dec 26, 2015, 10:45 AM**

This is why I don't save my info online. Yet again I thank my excessive paranoia

**Barkles** · **Dec 26, 2015, 11:07 AM**

I was lucky whilst it was going on I got into my account via steam mobile and took my card off it Tongue

Hackers are welcome to the £0.05 in my account anyway lol

Judge Rage · **Dec 26, 2015, 01:52 PM**

(Dec 26, 2015, 11:07 AM)Barkles Wrote: I was lucky whilst it was going on I got into my account via steam mobile and took my card off it

Hackers are welcome to the £0.05 in my account anyway lol

Soviethooves messaged me to tell me and by the time I was actually on my computer Valve had shut down the store.

All that's on my account is 4 quid and my e-mail address so have fun.

George · **Dec 26, 2015, 03:49 PM**

Use PayPal as you have to log in to it before you can buy anything, which is effectively two-stage security.

**bimkx** · **Dec 26, 2015, 04:18 PM**

The facts:
There was no DDOS for starters, valve took the servers down upon learning of the breach.

It was purely a failure with the web caching server showing sensitive information.

Attempting to remove your info caused more security issues as the pages showing your information were then cached for everyone to see.

Next time there's a situation like this you should really get proper sources for your info and not get into this scaremongering circlejerk.
SteamDB's twitter next time there's an issue like this.

Voluptious · **Dec 26, 2015, 10:14 PM**

https://youtu.be/x80VOkFwsL0 << Totalbiscuit PSA

https://youtu.be/dkSslseq9Y8 << Tom scott explanation (WATCH THIS!!!)

Only the last few digits of your credit card and number were exposed. Steam would never in hell show you a full credit card detail as that would never be cached, that would be sendt directly to the main server.

People are overreacting here.

Judge Rage · **Dec 26, 2015, 11:58 PM**

(Dec 26, 2015, 04:18 PM)LivKX Wrote: The facts:
There was no DDOS for starters, valve took the servers down upon learning of the breach.

It was purely a failure with the web caching server showing sensitive information.

Attempting to remove your info caused more security issues as the pages showing your information were then cached for everyone to see.

Next time there's a situation like this you should really get proper sources for your info and not get into this scaremongering circlejerk.
SteamDB's twitter next time there's an issue like this.

I know Valve took down their servers. However, I think the source Vol quotes is saying that a DDOS caused the failure.

**bimkx** · **Dec 27, 2015, 05:28 AM**

There was no DDoS, only an accidental bug/human error with the caching server.
That's it, one server misconfigured.
No hacks, no DDoS, no major security issue.
Most you could probably do was prank call somebody using their number you found on steam .
Y'all need to chill, we don't need to go all PSN/XBL kids, crying when it's down on Christmas day.

Project · **Dec 27, 2015, 11:39 AM**

tbh It was fixed fast and we still could play our games.

Development Blog:

Development Contributor Workflow

HR Blog:

What are they doing over there?

Teacher Blog:

Insight into the Teacher Team

Development Blog:

Infrastructure Upgrade 11/2019

Development Blog:

how suggestions???

Development Blog:

Planning for the future.

Username

Password

Username

Password

receiptDevelopment Blog:

Development Contributor Workflow

receiptHR Blog:

What *are* they doing over there?

receiptTeacher Blog:

Insight into the Teacher Team

receiptDevelopment Blog:

Infrastructure Upgrade 11/2019

receiptDevelopment Blog:

how suggestions???

receiptDevelopment Blog:

Planning for the future.

Development Blog:

HR Blog:

What are they doing over there?

Teacher Blog:

Development Blog:

Development Blog:

Development Blog: