Valve has firmly denied recent reports suggesting that its Steam platform experienced a "major" data hack, asserting there was "NOT a breach" of Steam systems.
Despite concerns from some users about reports claiming over 89 million user records were compromised, Steam's thorough investigation revealed that the leak involved only "older text messages." These messages contained one-time code SMSs but crucially, did not include any personal data.
In a statement published on Steam, Valve clarified that after reviewing the leak sample, it confirmed that no customer data was compromised. The company stated: "The leak consisted of older text messages that included one-time codes that were only valid for 15-minute time frames and the phone numbers they were sent to. The leaked data did not associate the phone numbers with a Steam account, password information, payment information, or other personal data."
Valve further reassured users, noting, "Old text messages cannot be used to breach the security of your Steam account, and whenever a code is used to change your Steam email or password using SMS, you will receive a confirmation via email and/or Steam secure messages."
Valve also used this opportunity to encourage players to enable the Steam Mobile Authenticator for added 2-factor security, stating it is "the best way to send secure messages about your account and your account's safety."Given the increasing frequency of data breaches and with over 89 million Steam accounts in existence, users had valid reasons to be concerned about potential security issues. The most infamous video game-related data breach occurred in 2011 when PlayStation 3 and PlayStation Portable networks were severely compromised, leading to a nearly month-long outage and the exposure of 77 million accounts.
Moreover, it's not just customer data at stake. In October of the previous year, Pokémon developer Game Freak suffered a significant hack, resulting in the leakage of data about its former and current staff, as well as details about its development pipeline. In 2023, Sony confirmed that data from nearly 7,000 of its current and former employees was compromised in two separate breaches. Additionally, in December 2023, hackers breached confidential data at Marvel's Spider-Man developer, Insomniac.
