Looks like Steam had a major data breach.

[anti SJW]

Story here.

89 Million accounts. Time to update your password.

 

["Controlled Demolition"]

In a post on X, user MellowOnline1 drew attention to another post on LinkedIn from Underdark AI. In it, Underdark AI claims they found a post from someone called Machine1337 on a reputable black market forum, offering to sell 89 million Steam account details for $5,000

Look, I know a guy, who knows a guy, who said he's selling these deets, okay? They're all super reputable.

This guy is full of shit and keeps revising his "story". Steam doesn't even use Twilio. Nothing happened, but journo scum are now picking it up for a quick outrage. But it doesn't hurt to change your passwords, I guess.

EDIT: The supposed source, "Underdark" also looks like a slop farm. According to services page:

At best, they're corporate grifters. At worst, this is all AI slop hallucinations. And, of course, multiple gaming-related journoid outlets have already picked it up and are running with it at full steam because alarmism is free engagement and SEO.

Oh, and here is the referenced archived Steam leak disclosure post on LinkedIn.
Quoted here:

This private information is unavailable to guests due to policies enforced by third-parties.

The supposed leaker does at least check out, with a possible SMS spoofing python script, so the provenance is there, but at best this "leak" only affects 2FA authentication, maybe, if Steam ever used Twilio, which I'm unable to confirm, meaning only historic 2FA messages are affected, with associated phone numbers. It's also 2 day old news.

Total Journo Death.

 

[Nitro!]

$5,000 for the volume of users seems very low.

View attachment 7361487

So it's historical data, a bunch of expired six-digit codes. Seems like a nothingburger.

 

[Suikafag]

Oh shit Steam account info has been lea-Oh its 2FA shit? 2FA codes that change like every 10 mins? Never mind, nothingburger, carry on.

 

[Daddy's Little Kitten]

Oh no! My goon games!

 

[Preacher ✝]

 

[COME ON OUT YOU RAPIST]

Oh shit Steam account info has been lea-Oh its 2FA shit? 2FA codes that change like every 10 mins? Never mind, nothingburger, carry on.

Steam doesn't even use these anymore. If you log in the phone app pings you immediately, you have less than a minute to verify the login. No digits involved.

 

[I'm Retarded?]

Total Journo Death.

thank you for your effortpost, kiwifriend.

 

[Evil Peter Griffin]

Thanks fellow Kiwi. Password changed.

 

[Fascist Frederick]

I hope my password didn't get leaked, it's "niggeR", with a capital R to represent the hardest of R's. I really like it and don't want to have to change it.

 

[MrTroll]

Someone hacked Steam. But you know who didn't? Shaggy.

 

[CEO of Autism]

Doesn't Steam enforce 2FA by default anyway?

 

[COME ON OUT YOU RAPIST]

Doesn't Steam enforce 2FA by default anyway?

They restrict a lot of features behind it. I don't really blame Valve, for a while the Russian mafia was laundering real world cash through Team Fortress 2 hats.

 

[Nicholas Gur]

I like when my steam details get leaked cause steam sends me an email with the ip of some random slav nigger everytime they try to log in.

 

[Merton J. Dingle]

From the comments on the article:

3 hours before this was published the twitter account (which is the only cited source) admitted that the supposed "hack" is literally impossible: Valve has never used Twilio.



This is journalistic malpractice. You don't publish a claim that hundreds of millions of dollars in digital assets are about to be stolen because of a 5-day-old tweet from some guy on twitter who heard it from some guy on linkedin who heard it from some guy on the dark net who is offering those hundreds of millions of dollars in assets for a mere $5k.



ANY amount of critical thinking should have halted this publication, frankly it reflects poorly on XDA. Do better.

I'm taking this with a grain of salt. This is a good reminder to enable 2FA if you haven't already, though.

 

[COME ON OUT YOU RAPIST]

From the comments on the article:


I'm taking this with a grain of salt. This is a good reminder to enable 2FA if you haven't already, though.

The comments section is gold. Nothing but journoscum struggling to damage control an article they didn't actually research. The journoscum were so lazy they didn't even include a Steam Deck in the article header, it's an Asus Rog.

 

[Nuclear Operative]

No wonder it's only '$5,000'.

 

[Archie_Kimkicker]

A reminder that all low-IQ gorilla niggers should be changing their passwords on a fairly regular basis.

 

[Hentai-Semitism]

Thanks for the heads up!

 

[Dysnomia]

The comments section is gold. Nothing but journoscum struggling to damage control an article they didn't actually research. The journoscum were so lazy they didn't even include a Steam Deck in the article header, it's an Asus Rog.

They're so quick to post "breaking news" that they don't even care if it's legit. It's just a rush to be first and get all the asspats. Fuck journos.