Website Finds Chink In Steam’s Security Armour


Ars Technica’s Kyle Orland recently found a security issue with Valve’s online marketplace, Steam. “Out of respect for the privacy of Steam’s more than 50 million users”, Ars didn’t immediately publish the article. Instead, it contacted Valve.

Barely three hours after being notified, the exploit had been fixed. That’s fast. But what’s really interesting is that Valve kept its mouth shut the entire time, neither commenting on the site or even publicly admitting that the exploit had been discovered.

The full piece on Ars details how the exploit was discovered and how easy it was to do, while also raising the point that by keeping quiet on the matter Valve is potentially discouraging further acts of voluntary “white hat” security existence.

HTML holes exposed sensitive data for “private” Steam user accounts [Ars Technica]


The Cheapest NBN 1000 Plans

Looking to bump up your internet connection and save a few bucks? Here are the cheapest plans available.

At Kotaku, we independently select and write about stuff we love and think you'll like too. We have affiliate and advertising partnerships, which means we may collect a share of sales or other compensation from the links on this page. BTW – prices are accurate and items in stock at the time of posting.

Comments


4 responses to “Website Finds Chink In Steam’s Security Armour”

Leave a Reply

Your email address will not be published. Required fields are marked *