zddgame
/
Game Information
/
Valve Releases Statement on Steam Christmas Bug; Dos Attack Started It All
Valve Releases Statement on Steam Christmas Bug; Dos Attack Started It All-October 2024
Oct 17, 2024 12:24 AM

  Valve has released a statement on Steam's Christmas bug that allegedly allowed users of the online gaming service, to access each other's account.

  The bug is said to have been caused by a caching issue, and up to 34.000 users might have seen private information from other Steam users. According Valve, the content that could be accessed, varied by page. Some pages though, contained a Steam user’s billing address, the last four digits of their Steam Guard phone number, their purchase history, the last two digits of their credit card number, and/or their email address. The steam creator states that, full credit card numbers, user passwords, weren´t revealed.

  On December 25th, a configuration error resulted in some users seeing Steam Store pages generated for other users. Between 11:50 PST and 13:20 PST store page requests for about 34k users, which contained sensitive personal information, may have been returned and seen by other users.

  The content of these requests varied by page, but some pages included a Steam user’s billing address, the last four digits of their Steam Guard phone number, their purchase history, the last two digits of their credit card number, and/or their email address. These cached requests did not include full credit card numbers, user passwords, or enough data to allow logging in as or completing a transaction as another user.

  

Steam Christmas Bug started with DOS Attack on Steam Store

According Valve´s statement, they are busy to identify users whose information was served to other users, and will be contacting those affected once they have been identified.

  The question remains how this bug occurred in the first place, and according Valve it all began with a DOS attack at the Steam Store, early Christmas morning.

  Early Christmas morning (Pacific Standard Time), the Steam Store was the target of a DoS attack which prevented the serving of store pages to users. Attacks against the Steam Store, and Steam in general, are a regular occurrence that Valve handles both directly and with the help of partner companies, and typically do not impact Steam users. During the Christmas attack, traffic to the Steam store increased 2000% over the average traffic during the Steam Sale.

  In response to this specific attack, caching rules managed by a Steam web caching partner were deployed in order to both minimize the impact on Steam Store servers and continue to route legitimate user traffic. During the second wave of this attack, a second caching configuration was deployed that incorrectly cached web traffic for authenticated users. This configuration error resulted in some users seeing Steam Store responses which were generated for other users. Incorrect Store responses varied from users seeing the front page of the Store displayed in the wrong language, to seeing the account page of another user.

  Valve´s official statement on the matter can be read here.

Previous Article:Tomb Raider Dev: If We Gave You Action Upon Action, It Would Get Old & Redundant Next Article:Tekken 7 Akuma Is The Only Planned Guest Character But Team Is Open To Add More
Comments
Welcome to zddgame comments! Please keep conversations courteous and on-topic. To fosterproductive and respectful conversations, you may see comments from our Community Managers.
Sign up to post
Sort by
Show More Comments
Game Information
AMD FidelityFX Super Resolution Can Be Implemented in a Day or Two, Devs Say; It Just Works
Dungeons & Dragons: Dark Alliance Out Now, New Gameplay and Epic Launch Trailer Released
The Legend of Zelda: Skyward Sword HD Receives New Trailer Focusing on Gameplay, Story, Characters and World
Cyberpunk 2077 New Mod Introduces DLSS Improvements
Latest Articles
NVIDIA Releases PUBG Game Ready Driver – 2017’s Last One
PlayerUnknown’s Battlegrounds 1.0 Now Out, Full Patch Notes Released
The Witcher 3 Xbox One X Update Analyzed; Pretty Much Locked 30FPS@4K in Graphics Mode
PUBG Announces 30 Million Players Across PC and Xbox One
Guerrilla Games Releases Horizon Zero Dawn Patch 1.51 to Address ‘Loot boxes’ Issue
Final Fantasy XIV New Screenshots Showcase Patch 4.2 Rise Of A New Sun
Activision’s Call of Duty WWII and Destiny 2 Were This Year’s Top Grossing Console Games in North America
Blizzard is Working on an Unannounced First-Person Game Involving Vehicles
Latest Articles
Cuphead Cashes In, Selling Over 2 Million Copies
Assassin’s Creed Origins Gets Final Fantasy XV Tie-in and Triumvirate of the Gods Trial
Mothergunship – PSX 2017 Hands-On Preview
ELEX Patch Adds 4K Rendering on PS4 Pro, Improved Resolution on XB1X, Easier Difficulty Settings & Many Fixes
Nexus Mods To Start Paying Creators Next Year With New Donation Points System
TINY METAL Runs at Native 4K@60FPS on PS4 Pro, 1080P@30FPS on Switch (Docked); HDR To Be Added Later
Nintendo Switch Will Have Bigger Impact On Development If Positioned As 3DS’ Successor, SaGa Series Creator Says
Apple Introduces New Rules Requiring Apps to Disclose Odds for Loot Boxes
About
Terms and Conditions Privacy policy Cookie Settings Contact Us
Services
Login register
zddgame Entertainment News Gaming News Game Information Game Library Codes Puzzle Games
Links
zpostcode Recruit weather mreligion Yellowpages sport constellation shopping name game directory literature Word tour furnish Lottery tftnews lyrics News digital car dir Edu Finance
Copyright 2023-2024 - www.zddgame.com All Rights Reserved