Report: Steam Forums Down, Possibly Hacked

November 7, 2011 -

The Steam forums are offline, with a message to visitors declaring that they are undergoing maintenance, but some users are telling Eurogamer that the forums may have suffered a security breach. Currently the forums are displaying the following message:

"The Steam Forums are temporarily offline for maintenance," a message on Steampowered reads. "Your patience is appreciated."

Eurogamer received an email from one Steam user who said a group changed the text on the forum and spammed some users' email addresses. The group is reportedly from FknOwned.com, a website that offers video game hacks, porn, etc. The group managed to deface the forums and some users reported receiving emails from Steampowered.com with the following message:

"Ever wanted to dominate the servers you play on with guaranteed results, but you were too afraid to cheat because of ban risks? Visit [removed domain] It's safe, secure and undetected."

"Along with hacks, we've also got some general discussion sections, hacking tutorials and tools, porn, free giveaways and much more. This site has been conditioned to meet all your needs in terms of resources so be sure to take a look and tell us what you think."

"Thanks again, the fkn0wned team."

No one has claimed that user data has been compromised or that any Steam accounts have been breached. Valve has not publicly commented on this story.

Source: Eurogamer

Posted in

Comments

Re: Report: Steam Forums Down, Possibly Hacked

Thankfully the Steam forums use the vBulletin forum software which encrypts account passwords (using md5 with salt) in the database (I know since I've set up vBulletin forums before). This makes it absolutely impossible to decrypt them back into plain text again (the wonders of trap-door cryptography).

 

The hackers could on the hand change people's forum (not Steam) passwords if they broke into the Admin Panel but that wouldn't accomplish anything useful. The worst it seems they've done is collected a huge list of user e-mails to spam and that's about it. Hopefully Valve can just roll back to the latest backup and things will work once again. I guess it depends on how the intruders broke in (phished an admin, found an exploit, etc) which determines how long it will take to prevent future incidents.

 
Forgot your password?
Username :
Password :

Shout box

You're not permitted to post shouts.
PHX Corphttp://www.polygon.com/2015/7/27/9050375/street-fighter-5-beta-offline-delayed Street Fighter 5 beta taken offline, now postponed indefinitely07/27/2015 - 9:51pm
Goth_Skunk@eZeek: Noooooooooo.... ;)07/27/2015 - 8:44pm
MechaTama31Re: Google+, wow. I never in a million years thought they would backpedal on that. I just resigned myself to not using commenting functions on any of their services.07/27/2015 - 6:21pm
E. Zachary KnightGoth, are you saying all women are fat. ;)07/27/2015 - 5:38pm
benohawkMake it more adorable and more gender neutral! Widescreen Dog and 16:9 their 16 kitten sidekicks07/27/2015 - 5:15pm
Goth_SkunkOr, if you prefer, Widescreen Woman.07/27/2015 - 4:12pm
Goth_SkunkWho will save us from this abominable practice?! Introducing WIDESCREEN MAN and his sidekick 16:9!07/27/2015 - 4:10pm
Andrew EisenInteresting coincidence. I tweeted about the evils of vertically oriented video just last night. https://twitter.com/AndrewEisen/status/62549836960397312007/27/2015 - 4:01pm
PHX Corphttps://www.youtube.com/watch?v=iJ_I9-CkzDE The Great Atari Ransack (The Jimquisition) Warning Vertical video syndrome in one scene07/27/2015 - 3:40pm
MattsworknameBout time google07/27/2015 - 3:33pm
james_fudgeugh. TG man :)07/27/2015 - 1:15pm
MechaCrashGoogle drops Google+ requirements for YouTube and other services: http://venturebeat.com/2015/07/27/google-is-dropping-its-google-requirement-across-all-products-starting-with-youtube/07/27/2015 - 12:55pm
benohawkThat still isn't Steam pay royalties. At best it is Bethesda not being willing to relicense the music,07/27/2015 - 12:51pm
Infophile(cont'd) different service. This often happened with TV shows, where music was only licensed for broadcast, but not for DVD release. So for many older shows, they either have to relicense it or use different/no music for the DVD release.07/27/2015 - 12:36pm
Infophile@benohawk: It most likely comes down to the original licensing agreement for the music in it. Often those agreements only license it for the medium it first releases in, so it has to be re-licensed if it's rereleased in a different form or through a ...07/27/2015 - 12:35pm
benohawkWhy would steam be paying royalties on anything in quake?07/27/2015 - 12:01pm
black mantaI recommend using the KMQuake II patch which supports .ogg music files, then downloading the music from someplace, then dropping it in to a music folder into the \baseq2 directory.07/27/2015 - 10:32am
black mantaI got Quake 2 during the Steam Quakecon sale. Funny thing is, there's no music for it! Guess Steam didn't want to pay the royalty fees or something.07/27/2015 - 10:30am
black mantaLike EZK, I also have a backlog of games. Right now I'm playing Crysis 3 for the first time, and replaying Quake 2.07/27/2015 - 10:29am
E. Zachary KnightZippy, No. It is because I have a backlog of games a mile long and have not bought to many new games, which includes Mass Effect.07/27/2015 - 9:28am
 

Be Heard - Contact Your Politician