Dude, who hacks Valve? I mean, I get it, you're criminals, but it's farking Valve. They're the cool guys of the video game industry. This is like going up to the guy who just built a playground for local youths with funds completely out of his own pocket and kicking him in the nuts.

Hack Activision or EA. They're the ones who deserve it.

/do I want pictures of Bobby Kotick in women's stockings to be found?
//only as long as I don't have to see them

Codenamechaz

I said Should. It's going to be far more secure than simple encryption, especially since salting turns the hashes into straight up gobbled, letters, numbers and symbols of varying sizes and lengths, so meaning if they actually had something to get through the algorithm, it'd take a few decades for them to succeed.

Umm, what? That entire paragraph was nonsense. You know the salts were almost certainly taken as well, right?

Now we get to see if they've learned anything from Sony's bad example on how to handle the PR side of this mess.

RexTalionis: I wonder how this affects me if I only use Paypal information with Steam.

From what I've been reading about this, Paypal info should be safe as it's not stored. You *may* want to change your Steam password, but it's really only an issue if it's shared across accounts.

Personally, this is not the response to this I hoped to see. At the same time, I'm not all that worried. I use different passwords between email, SPUF, and Steam itself.
Still, this is really shiatty to see. I understand that there's a wealth of information and such you could gain from hacking Steam, but it's farking Valve. One of the most respected gaming companies on the market. Why would you hack them unless you were looking for HL2Ep3/HL3 code?

/flash backs to the HL2 leak
//not the response to the forum hacking I hoped to see
///not overly worried about this as my account goes
////really hope they can pull through this with minimal damage done
/SLASHIES!

Marine1: Dude, who hacks Valve? I mean, I get it, you're criminals, but it's farking Valve. They're the cool guys of the video game industry. This is like going up to the guy who just built a playground for local youths with funds completely out of his own pocket and kicking him in the nuts.

Hack Activision or EA. They're the ones who deserve it.

/do I want pictures of Bobby Kotick in women's stockings to be found?
//only as long as I don't have to see them

Bobby Kotick should start a charity. Five dollars to allow a gamer to punch him in the dick. He'd make billions.

envirovore: . Why would you hack them unless you were looking for HL2Ep3/HL3 code?


Aside from trying to get 30 million users Credit Card info that is.

And Steam is not allowing me to change my password at the moment.

That's peachy.


/I'm one of those idiots who saved their information to Steam
//Not worried, though, as it's a separate account that I transfer money to when I buy something from Steam

ArtosRC: And Steam is not allowing me to change my password at the moment.

That's peachy.

One of my Steam Friends was saying the same thing earlier.
I figured that it may be due to a sudden influx of users changing their passwords all at once (thus over flowing their servers), but according to their server stats page, everything is running as it should.
http://store.steampowered.com/stats/content/ (as Fark won't allow it to be linked.)

Yet another reason to poke fun at the wankers who play video games

I read an interesting article recently on brute force hacking attempts that said GPUs might actually be the best way to crack a password hash.

Smeggy Smurf: Yet another reason to poke fun at the wankers who play video games

Says the guy on Fark since 2003 with 90+ links approved.

RexTalionis: I wonder how this affects me if I only use Paypal information with Steam.

It shouldn't since even if they got your Steam account password, trying to buy anything with your PayPal account would still require them to know your PayPal login to use it. Otherwise they're just buying the software for you with their own money.

/Unless you were foolish enough to use the same email for paypal as steam
//And same password

zarberg: I read an interesting article recently on brute force hacking attempts that said GPUs might actually be the best way to crack a password hash.

GPUs are absolutely the way to do it, it's not even a contest. Get 4 ati 6990s in a box and watch the hashes crack.

WayToBlue: zarberg: I read an interesting article recently on brute force hacking attempts that said GPUs might actually be the best way to crack a password hash.

GPUs are absolutely the way to do it, it's not even a contest. Get 4 ati 6990s in a box and watch the hashes crack.

Because they're pretty much built for large number crunching, right, whereas CPUs are built for commonly used instructions?

You noobs do realize that Steam has a setting that only allows logins from your home computer, right? Of course you didn't. Farking noobs.

ThisNameSux: You noobs do realize that Steam has a setting that only allows logins from your home computer, right? Of course you didn't. Farking noobs.

You mean the one that e-mails you if you want to make any changes and/or use any computer not already registered? The one I clicked the first day I signed up?

Yup. Realized it.

Thus far this has produced no ill effects for me.

ThisNameSux: Steam has a setting that only allows logins from your home computer

Indeed it does. Been using that since they implemented the feature.

Xaxor: Good thing I changed my Steam password the same day the forums story appeared on Fark.

same. better safe than lose 200 hundred games.

/still use the additional security, just to be double-plus-safe

envirovore: ArtosRC: And Steam is not allowing me to change my password at the moment.

That's peachy.

One of my Steam Friends was saying the same thing earlier.
I figured that it may be due to a sudden influx of users changing their passwords all at once (thus over flowing their servers), but according to their server stats page, everything is running as it should.
http://store.steampowered.com/stats/content/ (as Fark won't allow it to be linked.)

You're forgetting the Skyrim release as well. They're probably getting pounded harder than a cheap Thai whore at the moment.

/I had completely forgotten that I had a Steam forum account

So will this further delay the release of Half Life 2: Episode Three?

No aunties' I don't. This has been the same size deal since I got the email

JanusofZeal: I'm supposed to panic because they may have gotten access to encrypted information? oh noooeeeess.

Seriously, do people think encryption is the computer equivalent of turning a paper upside down after having written on it? Fun fact: it isn't.

Oh, and if you have your steam forum information the same as your bank account information and lets say steams encryption was terrible, then bwaahhahahahaha at you for being stupid enough to have bank info the same as forum info.

99.99% of the Internet-using world doesn't understand what encryption means. I'd put you in that group, because you're using the term encryption when you should say hashing.

Is there anyway to play Skyrim without Steam? Because the damn site's overloaded and it farking sucks.

foo monkey: JanusofZeal: I'm supposed to panic because they may have gotten access to encrypted information? oh noooeeeess.

Seriously, do people think encryption is the computer equivalent of turning a paper upside down after having written on it? Fun fact: it isn't.

Oh, and if you have your steam forum information the same as your bank account information and lets say steams encryption was terrible, then bwaahhahahahaha at you for being stupid enough to have bank info the same as forum info.

99.99% of the Internet-using world doesn't understand what encryption means. I'd put you in that group, because you're using the term encryption when you should say hashing.

Nvm. TFA says the passwords were hashed and the cards were encrypted. If they knew to salt the passwords, they should should be using a good encryption algorithm.

Need_MindBleach: Is there anyway to play Skyrim without Steam? Because the damn site's overloaded and it farking sucks.

Xbox or PS3 though steam is working fine for me I bought skyrim at about 1am EST and have been pulling 1.4mb download rate.

zarberg: WayToBlue: zarberg: I read an interesting article recently on brute force hacking attempts that said GPUs might actually be the best way to crack a password hash.

GPUs are absolutely the way to do it, it's not even a contest. Get 4 ati 6990s in a box and watch the hashes crack.

Because they're pretty much built for large number crunching, right, whereas CPUs are built for commonly used instructions?

They're built for massively parallel (ati 6990 has 3072 streams), extremely fast number crunching, which is perfect for hash cracking.

It's the difference between a system designed to do one thing incredibly well versus trying to everything.

Stop your fellow geeks, people. Go hack the AARP or something. Grandma won't even notice the fraudulent charges.

Well, I'm glad they SALT their passwords that get hashed; I really hope that the SALT is somewhere not where a potential hacker can get to it.

I wonder what 'encrypted' means on the CC data. They went so far as to say hash + SALT on the passwords, but simply said 'encrypted' on CCs. That could be purely so as not to reveal any more detail than they must, because their encryption is complete shiat (I doubt that, though), or anywhere in between.

Sanic123: Need_MindBleach: Is there anyway to play Skyrim without Steam? Because the damn site's overloaded and it farking sucks.

Xbox or PS3 though steam is working fine for me I bought skyrim at about 1am EST and have been pulling 1.4mb download rate.

Nope, trying to play the PC version.

Need_MindBleach: Sanic123: Need_MindBleach: Is there anyway to play Skyrim without Steam? Because the damn site's overloaded and it farking sucks.

Xbox or PS3 though steam is working fine for me I bought skyrim at about 1am EST and have been pulling 1.4mb download rate.

Nope, trying to play the PC version.

Then no. I believe that even the retail store copies are steam linked.

zarberg: WayToBlue: zarberg: I read an interesting article recently on brute force hacking attempts that said GPUs might actually be the best way to crack a password hash.

GPUs are absolutely the way to do it, it's not even a contest. Get 4 ati 6990s in a box and watch the hashes crack.

Because they're pretty much built for large number crunching, right, whereas CPUs are built for commonly used instructions?

It's more that a GPU is massively, hilariously parallel when compared to a CPU. It has to be. Just 1 of my x1200 screens is ~2.3 million pixels. So that's 2.3 million pixels that can be worked on at one time. and since you want to get 60 FPS, you only have (assuming my 880 MHz GPU is average), 15 million cycles to get those 2.3 million pixels.

(clickity-pops)

i think itll be OK

smooshie: Was the data somewhere on the forum servers?

That would be epic Sony fail.

JanusofZeal: I'm supposed to panic because they may have gotten access to encrypted information? oh noooeeeess.

Seriously, do people think encryption is the computer equivalent of turning a paper upside down after having written on it? Fun fact: it isn't.

Oh, and if you have your steam forum information the same as your bank account information and lets say steams encryption was terrible, then bwaahhahahahaha at you for being stupid enough to have bank info the same as forum info.

Do you really think computer encryption is unbreakable? Fun fact: it isn't.

And it's not a matter of having the "same information" as your bank account. The Steam service stores credit card information. You don't need bank info to use a CC number. Since that's the only thing of real value, that's probably what the attackers were after.
=Smidge=

Ned Stark: [img23.imageshack.us image 640x137] (clickity-pops)

i think itll be OK

Awesome.