Steam games forum down amid hack fears

Valve stays silent, users say they've been spammed


Computer games outfit Valve has suspended its Steam user forums following unconfirmed reports of a security breach.

Eurogamer claims that the official message board for Valve's Steam online games platform, Steampowered, was "defaced" on Monday night shortly before the site was suspended.

It is believed the defacement involved inserting a prominently displayed message promoting a site called FknOwned.com, which offers video game hacks, as captured in a screenshot of the gaming site here. This wasn't a simple case of link-spamming, but an out-of-place ostensibly promoted topic on the forum.

In addition, some gamers reported the receipt of spam emails promoting fkn0wned, supposedly from Steampowered.com. This would imply that hackers may have got their hands on email addresses or at least accessed a way to send messages via the Steampowered board, but this remains unclear.

The Steampowered forum remains suspended at the time of writing on Wednesday morning, with the usual discussion threads and information replaced by a holding message.

The Steam Forums are temporarily offline for maintenance. Your patience is appreciated.

There's no evidence to suggest that Steam accounts have been breached. However in the absence of any official word from Valve on the incident, you can't blame gamers from being more than a tad concerned.

The apparent breach of Valve's online forum is the latest in a string of security slips affecting video game developers this year, the most notorious of which led to the weeks-long suspension of Sony's PlayStation Network following a hack attack that exposed private information on million of users back in April. ®

Similar topics

Broader topics


Other stories you might like

  • Hackers weigh in on programming languages of choice
    Small, self-described sample, sure. But results show shifts over time

    Never mind what enterprise programmers are trained to do, a self-defined set of hackers has its own programming language zeitgeist, one that apparently changes with the wind, at least according to the relatively small set surveyed.

    Members of Europe's Chaos Computer Club, which calls itself "Europe's largest association of hackers" were part of a pool for German researchers to poll. The goal of the study was to discover what tools and languages hackers prefer, a mission that sparked some unexpected results.

    The researchers were interested in understanding what languages self-described hackers use, and also asked about OS and IDE choice, whether or not an individual considered their choice important for hacking and how much experience they had as a programmer and hacker.

    Continue reading
  • Stolen-data market RaidForums taken down in domain seizure
    Suspected admin who went by 'Omnipotent' awaits UK decision on extradition to US

    After at least six years of peddling pilfered personal information, the infamous stolen-data market RaidForums has been shut down following the arrest of suspected founder and admin Diogo Santos Coelho in the UK earlier this year.

    Coelho, 21, who allegedly used the mistaken moniker "Omnipotent" among others, according to the US indictment unsealed on Monday in the Eastern District of Virginia, is currently awaiting the outcome of UK legal proceedings to extradite him to the United States.

    The six-count US indictment [PDF] charges Coelho with conspiracy, access device fraud, and aggravated identity theft following from his alleged activities as the chief administrator of RaidForums, an online market for compromised or stolen databases containing personal and financial information.

    Continue reading
  • Devil-may-care Lapsus$ gang is not the aspirational brand infosec needs
    Hitting big targets, untouchable, technically proficient. Who will it inspire next?

    Analysis The Lapsus$ cyber-crime gang, believed to be based in Brazil, until recently was best known for attacks on that country's Ministry of Health and Portuguese media outlets SIC Noticias and Expresso.

    However, the gang is climbing up the ladder, swinging at larger targets in the tech industry. Over the past few weeks, those have included Nvidia, Samsung, and Argentine online marketplace operator Mercado Libre. Now, Lapsus$ is suspected of attacking game developer Ubisoft.

    Lapsus$ in February compromised Nvidia, stealing a terabyte of data that included proprietary information and employee credentials, and dumping some of the data online. The crew also demanded the GPU giant remove limits on crypto-coin mining from its graphics cards, and open-source its drivers.

    Continue reading

Biting the hand that feeds IT © 1998–2022