• Major Steam glitch - Fixed - Nobody in here knows what monopoly means
    1,350 replies, posted
[QUOTE=ClauAmericano;49400686]Think he means custom URL.[/QUOTE] Yeah. The STEAM_0 ID is still the same, but everything else was changed.
[QUOTE=croguy;49400691]Yeah. The STEAM_0 ID is still the same, but everything else was changed.[/QUOTE] Try to recover your email and then Steam if it's possible. It really sucks how people are getting affected by this and people STILL try to justify Valve and their mistake. Yes, it was a mistake. But it's a mistake that shouldn't have happened, especially not with a big corporation like Valve.
I hope seppuku is still a thing. Because next time this kind of thing happened with Sony, their CEOs will know what to do
Also slap your email here for testers [url]https://haveibeenpwned.com/[/url] [editline]27th December 2015[/editline] Also unless your account ID is your full name or the password that you use for your email I don't really see any of the info that you could see at the "Account details" that useful.
[QUOTE=t h e;49400263]I can tell you've had a very thorough reading of the thread and have been very involved in the discussions[/QUOTE] I see you think I'd listen to Facepunchers and not friends who are CompSci majors who work in data security. AKA People who have master degrees.
[QUOTE=ClauAmericano;49400744]Try to recover your email and then Steam if it's possible. It really sucks how people are getting affected by this and people STILL try to justify Valve and their mistake. Yes, it was a mistake. But it's a mistake that shouldn't have happened, especially not with a big corporation like Valve.[/QUOTE] I do believe Croguy should pursue Steam Support. I have friends who have been in a similar account/email breech combo. However, and this is the point I labored on in my last post, it is genuine fear mongering and senseless blame laying to say Valve is at fault. Could the recent issue had played a part in his account being compromised? Possibly. However it is not at all unknown or unheard of for the exact same thing to happen in times past. So, it therefor, is equally likely that this is an unrelated account breach. Unless his email name was "Passwordis1" and his steam account password was as well, some hacker had to secure the password to both accounts (again, if both are sharing the same password that is also a security liability that [I]you[/I] are responsible for) then breech them. Which the caching issue could not accomplish, aid, or abet. So please, do not further ignorance. [QUOTE=Swilly;49400824]I see you think I'd listen to Facepunchers and not friends who are CompSci majors who work in data security. AKA People who have master degrees.[/QUOTE] Ten points deducted for logical fallacy: Appeal to Authority. Just because someone has a masters degree in anything does not make them a preeminent expert, nor does it give [I]your own[/I] testimony special weight. In fact, people who have just recently achieved degrees demonstrably become more dogmatic in their beliefs, and less coherent or willing to accept that they lack knowledge in cases where they definitely do lack knowledge. You are one of us, and trying to put yourself 'above' the conversation, just so you can deliver your own tenpence, [B]then[/B] taking the ridiculous step to simply say, "oh you foolish idiots, I know [I]experts[/I]" is tantamount to trolling if not deeply telling of your own ignorance.
[QUOTE=ClauAmericano;49400744]Try to recover your email and then Steam if it's possible. It really sucks how people are getting affected by this and people STILL try to justify Valve and their mistake. Yes, it was a mistake. But it's a mistake that shouldn't have happened, especially not with a big corporation like Valve.[/QUOTE] I recovered some PayPal invoices so it should get back to me in due time. Should have switched to a more secured steam email ages ago too, but it was due to come back to me after this disaster. [editline]27th December 2015[/editline] [QUOTE=Crazy Ivan;49400828]I do believe Croguy should pursue Steam Support. I have friends who have been in a similar account/email breech combo. However, and this is the point I labored on in my last post, it is genuine fear mongering and senseless blame laying to say Valve is at fault. Could the recent issue had played a part in his account being compromised? Possibly. However it is not at all unknown or unheard of for the exact same thing to happen in times past. So, it therefor, is equally likely that this is an unrelated account breach. Unless his email name was "Passwordis1" and his steam account password was as well, some hacker had to secure the password to both accounts (again, if both are sharing the same password that is also a security liability that [I]you[/I] are responsible for) then breech them. Which the caching issue could not accomplish, aid, or abet. So please, do not further ignorance.[/QUOTE] It might have been, but the fact that the events overlap each other so closely makes me raise some alarms. The one I used for Steam was fairly discreet, too; Made years, years ago and not used for any other purpose except running the steam account. Don't worry about it guys, shit happens. I just hope I manage to unfuck this.
[QUOTE=Crazy Ivan;49400828] So please, do not further ignorance.[/QUOTE] Look who's talking.
[QUOTE=ClauAmericano;49400744]Try to recover your email and then Steam if it's possible. It really sucks how people are getting affected by this and people STILL try to justify Valve and their mistake. Yes, it was a mistake. But it's a mistake that shouldn't have happened, especially not with a big corporation like Valve.[/QUOTE] croguy's account being hijacked is, to be blunt, in all likelihood their own fault if the learning croguy's Steam email and username was enough to compromise their account. To be clear, I don't say this to be mean, I say this because sugar coating it doesn't lead to an understanding--for everyone--of how to better protect one's digital life. A person's email address or Steam username are not security keys, they are not a "second password", they are simply an identifier. If you rely on the obscurity of your email or Steam username to be not publicly known as security, you are doing it very very wrong. Also, to those who will likely call that victim blaming, they are certainly right it is, and perhaps the blame is not on them but the lack of education around basic account security on the internet. The point is that, extremely poor account security is likely the root cause, the personal data breach through Steam was just an enabler. Also, to be clear, I don't think I've seen anywhere here say this wasn't Valve's fault, though perhaps I've missed some posts. From my perspective, the issue I took was with the posts I saw where people were, in my opinion, massively overreacting. Security issues, breaches of privacy, etc... IS a fact of life now. If you put something on the internet, and you basically need to nowadays as socicity trends towards being every more digital, it's probably going to be leaked at some point. Calling for Valve to be sued to oblivion or whatever is pointless, and if applied equally, would quickly result in no companies existing on the internet because incidents like this (releases of personal information that is) will happen; they are basically unavoidable.
[QUOTE=DaMastez;49401021]croguy's account being hijacked is, to be blunt, in all likelihood their own fault if the learning croguy's Steam email and username was enough to compromise their account. To be clear, I don't say this to be mean, I say this because sugar coating it doesn't lead to an understanding--for everyone--of how to better protect one's digital life. A person's email address or Steam username are not security keys, they are not a "second password", they are simply an identifier. If you rely on the obscurity of your email or Steam username to be not publicly known as security, you are doing it very very wrong. Also, to those who will likely call that victim blaming, they are certainly right it is, and perhaps the blame is not on them but the lack of education around basic account security on the internet. The point is that, extremely poor account security is likely the root cause, the personal data breach through Steam was just an enabler. Also, to be clear, I don't think I've seen anywhere here say this wasn't Valve's fault, though perhaps I've missed some posts. From my perspective, the issue I took was with the posts I saw where people were, in my opinion, massively overreacting. Security issues, breaches of privacy, etc... IS a fact of life now. If you put something on the internet, and you basically need to nowadays as socicity trends towards being every more digital, it's probably going to be leaked at some point. Calling for Valve to be sued to oblivion or whatever is pointless, and if applied equally, would quickly result in no companies existing on the internet because incidents like this (releases of personal information that is) will happen; they are basically unavoidable.[/QUOTE] So why should it be sugarcoated to Valve that they fucked up royally on-top of their usual lackluster amount of official community support and general support personnel? If anything your last statement means that far too many companies takes the easy road instead of upping their security, which shouldn't be used as a benchmark to follow, but a benchmark that shouldn't never been reached in the first place. I don't want to live in a future where it's to be expected because of that laissez faire attitude you seem to have, and also seem to share with CEO's
[QUOTE=DaMastez;49401021] Security issues, breaches of privacy, etc... IS a fact of life now.[/QUOTE] That's total bullshit. For about 6 years, there have only been 5 attempts to get into my email, all unsuccessful; since the leak I've been getting bombarded with failed attempt notices. Don't even try to pretend that this shit is "the norm".
[QUOTE=Butthurter;49401207]lmao literally nobody here is defending valve atm youre just getting pissy paranoid (albeit rightfully so) over a small exposure of data[/QUOTE] I'm sure as hell mad over how Valve made a "small" exposure of data happen and still haven't at least made an official statement about it. You really have to lack respect for your users if you take this long to write up a simple apology.
[QUOTE=lxmach1;49401271]That's total bullshit. For about 6 years, there have only been 5 attempts to get into my email, all unsuccessful; since the leak I've been getting bombarded with failed attempt notices. Don't even try to pretend that this shit is "the norm".[/QUOTE] Great sample size. [quote]According to the latest findings of the Breach Level Index produced by digital security company Gemalto, 888 data breaches occurred in the first half of 2015, compromising 245.9 million records worldwide.[/quote] Oh, and since this is (probably) an accidental breach: [quote]Other sources of records theft in first half of 2015 were accidental loss (28.6 million for 11.6%)[/quote] Source: [url]http://www.gemalto.com/brochures-site/download-site/Documents/Gemalto_H1_2015_BLI_Report.pdf[/url] So yes, by in large, this is "the norm". [editline]28th December 2015[/editline] [QUOTE=Van-man;49401124]So why should it be sugarcoated to Valve that they fucked up royally on-top of their usual lackluster amount of official community support and general support personnel? If anything your last statement means that far too many companies takes the easy road instead of upping their security, which shouldn't be used as a benchmark to follow, but a benchmark that shouldn't never been reached in the first place. I don't want to live in a future where it's to be expected because of that laissez faire attitude you seem to have, and also seem to share with CEO's[/QUOTE] You've missed my point. In the past failures of mechanical failures were and still are common, the difference was if a lock to a filing cabinet was weak or someone left a door unlocked (or, more similarly to this case, the filing system got messed up and someone was handing out the wrong records) the impact would be significantly smaller, as would be the likelihood that someone would take advantage of the flaw to gain unauthorized access. Ultimately, the internet and everything on it is made by humans and will have flaws/errors/whatever. Most are minor, most can be prevented by rigorous testing and review processes, but these flaws cannot be completely removed or prevented. Further, the very nature of the internet guarantees that these flaws, whenever they occur, will be amplified massively. Further, there's a difference between making the best effort at security and still having issues vs. not making a reasonable effort. I basically said "people will be hurt and killed in car crashes" and your response was, to my interpretation, "that's not acceptable, people can't be hurt, we have to do more" even though a lot is already being done and, further, there is only so much that can be done.
[QUOTE=Crazy Ivan;49400828] Ten points deducted for logical fallacy: Appeal to Authority. Just because someone has a masters degree in anything does not make them a preeminent expert, nor does it give [I]your own[/I] testimony special weight. In fact, people who have just recently achieved degrees demonstrably become more dogmatic in their beliefs, and less coherent or willing to accept that they lack knowledge in cases where they definitely do lack knowledge. You are one of us, and trying to put yourself 'above' the conversation, just so you can deliver your own tenpence, [B]then[/B] taking the ridiculous step to simply say, "oh you foolish idiots, I know [I]experts[/I]" is tantamount to trolling if not deeply telling of your own ignorance.[/QUOTE] So I should listen to people I don't know, on the internet, who can say just about anything? Or trust actual people I know and can vet? This isn't an appeal to authority, this is an appeal to actual proof that can be validated versus 'Nuh uh, I know how this shit works. Trust me.' [editline]27th December 2015[/editline] Like professors and people with fucking master's degrees, aka the people you would [I]normally listen to for something like this.[/I] [editline]27th December 2015[/editline] By the way, you pulled off the Fallacy Fallacy, meaning my argument is void because of a fallacious argument without realizing that its only bad to use a fallacy when its the mainly crutch and doesn't have sound logic to it.
[QUOTE=Swilly;49402701]So I should listen to people I don't know, on the internet, who can say just about anything?[/quote] So, for example, someone might say: [QUOTE=Swilly;49400824]I see you think I'd listen to Facepunchers and not friends who are CompSci majors who work in data security. AKA People who have master degrees.[/QUOTE]
[QUOTE=Butthurter;49401207]lmao literally nobody here is defending valve atm youre just getting pissy paranoid (albeit rightfully so) over a small exposure of data[/QUOTE] yeah i'm not on the side of "valvr does nothing wrong", they fucked up. but i am also not going to pretend this was absolutely catastrophic. every other company that has had a leak recently would give their collective right arms for their leaks to have been on the same level as this steam one
What do people want Valve to [b]DO[/b], exactly?
[QUOTE=Atlascore;49403053]All I want from them is communication, having to go to a third-party gaming news website to get the official response to all of this is so stupid I can't even put it into words. How fucking hard is it to set up an official blog for Steam news? They literally have a blog for all their current major games, Dota 2, CS:GO, TF2, they've been doing this shit YEARS, why can't they extend it to Steam itself?[/QUOTE] [url]http://store.steampowered.com/news/?feed=steam_blog[/url]
[QUOTE=Atlascore;49403191]I want a proper Steam blog, not something tucked away in the news section (that barely anybody visits), you should also look at the post dates, they've literally only posted to it four times this year, and the last post was in [I]October[/I], there is no post in December explaining what happened on Christmas and how they're going to make sure it never happens again, that is one blog post that absolutely needs to exist.[/QUOTE] you are the type of customer that i hate dealing with
[QUOTE=Atlascore;49403297]Why, because I expect the most basic level of communication? I'm not asking for a detailed report to be written about every bowel movement they make, I just want an official word from them (and not from random ass gaming news websites like Gamespot and Kotaku) when something horrible happens, like what we experienced on Christmas.[/QUOTE] dude seriously, just take a step back and look at yourself. [highlight](User was banned for this post ("Put more effort into your posts if you're gonna participate in SH." - postal))[/highlight]
[QUOTE=Atlascore;49403297]Why, because I expect the most basic level of communication? I'm not asking for a detailed report to be written about every bowel movement they make, I just want an official word from them (and not from random ass gaming news websites like Gamespot and Kotaku) when something horrible happens like what we experienced on Christmas.[/QUOTE] No because you're asking for shit that they don't need they already have a blog dedicated to shit, and a trusted source I only expect something completely new once and if valve decide to restructure their service to adhere to the demands of the community. Currently, it's fine for what they need
[QUOTE=geel9;49402988]What do people want Valve to [b]DO[/b], exactly?[/QUOTE] If they made a public apology to everyone I'd be alright with all of this, but the fact that they haven't acknowledged any of this bothers me.
[QUOTE=Atlascore;49403332]Valve is fully capable of communicating by the way[/QUOTE] Well, I wouldn't say fully capable, remember it's key to have someone with profession with dealing with situations like these, unlike the counterstrike blog, which is a basic report on their solutions to the problem from developers themselves. From what I can gather, valve doesn't even have anyone dedicated to Public Relations, nor do then openly advertise on so, everyone they focus on hiring is in development in a few ways or other jobs that assist the company in expanding/researching the market. A large solution to the problem is to actually get someone into public relations. I would seriously laugh if they did have someone, because it seriously looks like, from many angles, that they should be doing a lot better job and more dedication to the task that they're paid to do
[QUOTE=Anti Christ;49403261]you are the type of customer that i hate dealing with[/QUOTE] What a sad post. Probably should limit yourself to solo work then if customers [I]daring[/I] to want basic communication makes you angry or some weird shit.
This was a major cockup that leaked private information. It doesn't matter what your opinion is on how private/confidential said information actually is. Their statement isn't really acceptable for when something like this happens. Especially if you only send it out to third-party websites that are asking about it and don't officially post it on your own sites, forums, or wherever. However, I am willing to give them the benefit of the doubt of not having released a proper statement yet because of the holidays. Statements like this basically require talking with legal these days to see what they can say without getting sued by everyone. After getting said statement from Valve I replied saying that many users will find it to be inadequate. I hope they'll release a proper one sometime during the next few days, and hopefully take quicker action and communicate about it better next time something like this happens. This wasn't the first time and it won't be the last.
They should at least say something about it. A formal apology, assessment of possible damage, an explanation of what happened. Really just anything.
[QUOTE=Anti Christ;49403261]you are the type of customer that i hate dealing with[/QUOTE] where do you work because im gonna go out of my way to never go there lmao seriously, is there any way you can justify not communicating such horrible fuckups like this?
[QUOTE=Anti Christ;49403261]you are the type of customer that i hate dealing with[/QUOTE] Ugh, fucking entitled customers, wanting piece of mind that their personal details aren't being looked at by someone else.
Can we not be so hostile? There are clearly two sides to the debate but there's no reason to be so angry about it either way. Take a step back, understand both points and come to a new understanding.
[QUOTE=Map in a box;49403893]Can we not be so hostile? There are clearly two sides to the debate but there's no reason to be so angry about it either way. Take a step back, understand both points and come to a new understanding.[/QUOTE] There don't even appear to be two sides really. Most people seem to be more upset over the lack of communication (justifiably so) than the initial incident. If Valve had sent out notifications or even an error message when attempting to logon on the 25th this thread would have died two days ago.
Sorry, you need to Log In to post a reply to this thread.