Valve has excluded a vapor data injury, but they still examine leak from telephone numbers

It is difficult to understand that your users do not have to change their passwords.

Valve replied to reports that Steam has suffered a data injury.

Yesterday we reported on Hacker Machine1337 and claimed that they had held a fresh leak, where information was recorded with two factor SMS protocols, news content, metadata and delivery status.

Valve shared this announcement in response to his website with:

You may have seen reports on Leck's older text messages that were previously sent to Steam customers. We examined the leak test and found that this is not a violation of steam systems.

We still dig into the source of the leak, which is reinforced by the fact that SMS messages are unencrypted during the transit and are led by several providers on the way to your phone.

The leak consisted of older text messages that contained unique codes that were only valid for 15-minute time frames and the telephone numbers they sent. The telephone numbers have not linked the leaked data with a Steam account, password information, payment information or other personal data. Old text messages cannot be used to violate the security of your Steam account. Whenever a code is used to change your Steam -E email or password using SMS, you will receive confirmation by e -mail and/or Steam Secure messages.

You do not have to change your passwords or telephone numbers due to this event. It is a good memory of the treatment of security messages from accounts that you have not expressly requested as suspicious. We regularly recommend checking your steam account -security at any time

We also recommend setting up the Steam Mobile Authenticator if you haven't done it yet, as we get the best way to send safe messages about your account and the security of your account.

While Valve denies that there was a data injury, her statement indicates that you believe that the leak is real. You confirm that the telephone numbers of the Steam users who are an option for the steam form factor -authentication of Steam 2 were part of the information that was recorded in the leak.

For this reason, we consider your claim that it is not necessary to change passwords or telephone numbers with skepticism. Even if you believe that there are no real safety problems with this data, you probably don't stop your users from choosing security measures. At least this could have been better formulated.

The examination can later lead to different results, but for now Steam ensures that you do not have to worry about your passwords, payment information and personal information that is impaired. We hope that Steam can complete her investigation and close the window for any potential of data or security violations as soon as possible.