By Gabyskra Go To PostI bet they barely feel any negative effect long term. Very much like Sony did not experience any.
Sony immediately took their shit offline and kept it off until they fixed it and paid for identity theft and stolen card purchases. They got on their knees and begged.
Valve has to do that, MINIMUM.
He got fucked: https://twitter.com/BenJanca
By Captain Yolo Von Butts Go To PostSony immediately took their shit offline and kept it off until they fixed it and paid for identity theft and stolen card purchases. They got on their knees and begged.The fact that ANYONE could just login and see someone's account info for HOURS and they took that long to take their login system offline is absolute idiocy. Those first few minutes they discovered this issue should've been a 503.
Valve has to do that, MINIMUM.
If my Steam account still has 2.78 odd dollars, it means nothing was touched right? That would have been emptied with any transaction before my bank account is hit?
Check your bank/paypal accounts and not your steam account. Far as I understand, people can only see what's in the cache. If you haven't touched or logged into Steam today then you may be okay.
By DY_nasty Go To Postitshappening
https://www.reddit.com/r/Steam/comments/3y7uq1/my_paypal_got_emptied/
By RATHasReturned Go To PostHe got fucked: https://twitter.com/BenJancayikes
By reilo Go To PostThe fact that ANYONE could just login and see someone's account info for HOURS and they took that long to take their login system offline is absolute idiocy. Those first few minutes they discovered this issue should've been a 503.
Yep. I would have been taking that shit offline. Hell, I would have been running around pulling cables and shit at that point and get on the phone with the edge providers telling them to kill power to the whole rack. Fucking inexusable how long they let it go.
Valve is going to have to finally admit they need to either create and hire an actual dedicated IT department or CS company.
By Captain Yolo Von Butts Go To PostYep. I would have been taking that shit offline. Hell, I would have been running around pulling cables and shit at that point and get on the phone with the edge providers telling them to kill power to the whole rack.Exactly. I'm shocked they don't have an emergency off switch or something. I get that their server clusters must be complicated as hell because of their scale, but they should have a single gateway where they can take the site offline in a matter of minutes and put up a 'brb'.
The easy answer is to just not use Steam anymore and punish them monetarily since that's mostly what companies respond to but gamers in general are terrible at this.
By 13MillionDollarMan Go To PostThe easy answer is to just not use Steam anymore and punish them monetarily since that's mostly what companies respond to but gamers in general are terrible at this.
Yeah.... But you know, fm and cs is about the only games I play really. So I'm just going to stick to it
Origin is superior to Steam. From DL speeds to actually talking to a person when you need help.
But EA they said
But EA they said
So last yeah they hacked Ps3 and Xbox and this year the hackers went after stream..... I legit didn't see this coming.
I was worried then I read the Steam part. Fuk Steam as always I don't ever log in and take multiple attempts to even remember the password it never bothers to save.
After thinking about it, talking over it with a friend, especially the impact it has them and certain other people, I'm legit done with my Steam account. I can understand fuckups can happen but their quietness and fuckery dealing with the event has left a sour taste. They're gonna have to move mountains to get people's trust back at this point.
By Smokey Go To PostOrigin is superior to Steam. From DL speeds to actually talking to a person when you need help.i never got that steam worship some PC players seem to have. "no steam no sale", i heard that a lot.
But EA they said
By reilo Go To PostThe fact that ANYONE could just login and see someone's account info for HOURS and they took that long to take their login system offline is absolute idiocy. Those first few minutes they discovered this issue should've been a 503.
but they only knew a few details regarding your personal info lol
that barely counts as PII !
/gaf
What's sad is it's not even malicious attacks, it's their own lackadaisical or cheaping out bullshit...
If this happened at my company, the OCC would literally shut us down the next day. What a fucking catastrophe.
By HasphatsAnts Go To PostIf this happened at my company, the OCC would literally shut us down the next day. What a fucking catastrophe.
we've been fined tens of thousands of dollars just for minor violations before
valve be like fuck it tho
Steam is back up and running without any known issues. As a result of a configuration change earlier today, a caching issue allowed some users to randomly see pages generated for other users for a period of less than an hour. This issue has since been resolved. We believe no unauthorized actions were allowed on accounts beyond the viewing of cached page information and no additional action is required by users.wooooooooooooooow
- Valve
On one hand, that's not a public statement. On the other, it's a response to a media channel's inquiry, so customers are obviously going to see it.
I guess what I'm trying to say is, I don't think Valve has a PR department.
I guess what I'm trying to say is, I don't think Valve has a PR department.
So I got 6 hits on my email account associated with Steam of people trying to reset the password. And I just read that "statement". Fuk Valve.
By Woodenpapangus Go To PostWell I am not exactly sure what more users could do?
By Smokey Go To PostSo I got 6 hits on my email account associated with Steam of people trying to reset the password. And I just read that "statement". Fuk Valve.Just one example of many, not to mention addresses and phone numbers were also obtained.
By 13MillionDollarMan Go To PostJust one example of many, not to mention addresses and phone numbers were also obtained.
It was just the last digits of the phone number, no? Was all I could see on other peoples caches. Attempting to reset the password is also not exactly going to work unless they somehow also got access to your email.
But my question was what people were supposed to do about that? It sucks, but it's not like you can do much about people having seen your name. I guess you could change your steam email, but someone knowing your email address should not be a security risk.
Don't get me wrong, it's really fucking bad this happened and I'm not trying to down play it, or the terrible way valve handled it. I just don't see what people people affected by it could really do, go reserve the effects of this.
By PSYCH! Go To PostObtaining that information makes social engineering easier.
Yes certainly. But I'm still failing to see the steps you can take, to make this harder for whoever saw your info, unless you will want to change your name...
By PSYCH! Go To PostObtaining that information makes social engineering easier.This. Knowing a few security tidbits will make it easier for them to get into another account with th info they obtained, eg getting into your Amazon account.
By reilo Go To PostThis. Knowing a few security tidbits will make it easier for them to get into another account with th info they obtained, eg getting into your Amazon account.What security tidbits could you learn?
Just your email address... and the last two digits of your CC. That's all I saw in your account... (j/k) I was logged out this morning (my time) and checking my account now.. don't really know what info they could have gotten tho..
By blackace Go To PostWhat security tidbits could you learn?Last four digits of credit card, phone number, billing zip code are all pretty standard things that will be asked to verify an account if you were to attempt to call up and say you were locked outta your account.
Just your email address... and the last two digits of your CC. That's all I saw in your account... (j/k) I was logged out this morning (my time) and checking my account now.. don't really know what info they could have gotten tho..
By reilo Go To PostLast four digits of credit card, phone number, billing zip code are all pretty standard things that will be asked to verify an account if you were to attempt to call up and say you were locked outta your account.But none of that info is on your account screen..
What did they tweak to make this happen? It doesn't make sense that you would see someone else's account page.
By Captain Yolo Von Butts Go To PostWhen I checked i could see full phone number and address..Maybe I am looking in the wrong place.. but I just see my CC with the last two digits..
The last 4 of my phone number...
My email address...
Not even my name..
That's under account details.
By PSYCH! Go To PostwooooooooooooooowMake your whole set up look so easy to bork with that statement