Support NeoGAF

[Steel]

Valve may not have anyone with access to the PR credentials. Engineers should be on call always, PR not necessarily. (Not forgiving Valve or giving them a pass, just trying to understand why)

There should be someone with PR or above that has access to a computer and a phone to get a call from the engineers.

 

[Haunted]

We just finished playing Phase 10. My PC isn't even on lol.

solid choice

Time to pull out some board games, have a nice cold Weizen and wait for all of this to blow over.

And then rip Valve a fucking new one when the extent of the damage becomes known.

 

[| Praxis |]

From the Steam forums:

For paypal users, Valve has stated on twitter that it is only safe to remove it through paypal itself.

1. click the cog wheel in the upper right corner when logged in.
2. scroll down and look for a link like button with preapproved payments then click.
3. under the dropdown menu click on active and then click go.
4. click the one from steam and cancel it.

 

[Shepard]

We need someone trustworthy... like 4chan guy.

I'm personally waiting for YouTube comments guy.

Spoiler

I just want to know how widespread these are before freaking out

 

[ebullientprism]

Jesus Christ I have two cards and I dont even remember which one is linked on Steam. Hopefully neither cause I hate linking cards to accounts.

Well past my bedtime so I cant stay up and monitor the credit cards either.

Fucking Hell Valve.

 

[ironcreed]

People were able to see the full phone numbers and addresses.

Accounts are even visible through fucking Google.

 

[CaLe]

Am I safe if I didn't login today and I don't have my credit card or PayPal account saved ?

 

[Alucrid]

From the Steam forums:

again, that was steamdb twitter, not valve themselves

 

[ViciousDS]

From the Steam forums:

If your on the mobile site

It's the gear for profile and scroll all the way down to pre approved at the very bottom of the page

 

[And_Gignac]

Melkr is dying to buy Half-Life 3 right now.

It was a failed joke on my part omg stop bullying me hejsbwhwjsnsn

 

[Steel]

Wow, what a mess. The responsible thing to do would be to take Steam offline, so as to limit the blast radius. Lack of communication from Valve up until this point has been disappointing.

At least it's offline now. Took them a full hour, but still.

 

[Iorv3th]

Am I safe if I didn't login today and I don't have my credit card or PayPal account saved ?

Nobody really knows.

 

[Mass Effect]

So if you don't store your payment info on Steam you're good, right?

 

[tim.mbp]

From the Steam forums:

Cat lover?

 

[NewDust]

Take it with a grain of salt.

Add it to your list then.

 

[chrominance]

Seeing as how you could view a random person's account page without logging in, google's cache bots probably caught a copy of an unfortunate soul's page and cached it

Luckily, unless Google stores multiple versions of a page in its own cache, the page that allowed you to see people's full phone numbers and billing address was not cached by Google in a way that reveals anyone's information.

 

[AHA-Lambda]

From the Steam forums:

Why does this link to another unrelated gaf thread?

 

[Amneisac]

Man I'm so happy that I had a bad steam experience where I vowed never to buy directly from steam again (lagged when putting money in my wallet and steam customer service never replied to me when I wanted to take the second deposit back out).

Screw you valve customer service.

Thank you valve customer service!

It seems like you overreacted, but I guess it's good that this one potentially negative experience helps you rationalize your overreaction.

 

[Kenzodielocke]

That is fucking creepy.

 

[Tangled Up in Blue]

I'm really sorry for anyone who is negatively affected by this. This is awful.

If anybody needs me, I'll be in the corner hyperventilating into a paper bag.

 

[Disaster Nebraska]

GeoHot is this you?

 

[RulkezX]

Guy in my Clan is saying on TS he was able to navigate to teh page where you could deposit funds in a wallet (not his own account) but backed the fuck out.


*no proof or source so feel free to dismiss at will as I think this would be more widespread if that was true*

 

[fertygo]

so I'm not online for 12 hour and install mobile steam guard at that time with new phone, I'm ok right?

 

[Plum]

This was posted 30 minutes ago, haven't seen it here.

https://steamcommunity.com/discussions/forum/0/458604254431478327/

EDIT: Community moderator.

 

[MageBoySA]

There should be someone with PR or above that has access to a computer and a phone to get a call from the engineers.

Should be, but on a holiday they may not be near it, be on a plane, etc. Also, the engineers could be waiting to know the whole story before calling PR. No matter what it's still a massive cluster fuck though.

 

[Tenebrous]

"You have got one new item in your inventory."

 

[Ardenyal]

This was posted 30 minutes ago, haven't seen it here.

https://steamcommunity.com/discussions/forum/0/458604254431478327/

EDIT: Community moderator.

Admitting to being 100% responsible for this fuck up might not be legally the wisest decision.

 

[Protome]

From the Steam forums:

Sounds like they are mistaking Steam DB for an official twitter.

You're just as bad as the people posting paypal pics dude, posting third party tweets that tell people not to remove their paypal or take other protection measures.. Seriously, just stop.

Those tweets only said not to try to remove your details via the steam accounts page which was in fact the correct advice.

 

[GaimeGuy]

no unauthorized purchases on my account, and i should be good since:
1. Cookies aren't being cached
2. I only use paypal for steam wallet
3. Every time I use paypal I have to enter my password.

Still, this is a PR/security nightmare

 

[Shepard]

If it was a cache problem, does it mean it'll only affect those who visited specifically their account info page rec3ntly?

 

[davidwhangchoi]

cute =)

 

[gilljoy]

Accounts are even visible through fucking Google.

Is there a way to search to see if an account is visible?

 

[Hidden One]

Well I haven't got any emails from steam guard and I've been checking my bank account. Hopefully everything is fine for me.

 

[benny_a]

If it was a cache problem, does it mean it'll only affect those who visit specifically their account info page?

That's the current operating theory, yeah. Or at least where doing any account related activity when this caching thing went apeshit.

 

[| Praxis |]

again, that was steamdb twitter, not valve themselves

I know that, but just thought I'd share the steps on how to remove pre approved payments on Paypal and give credit to the original poster. Despite them being inaccurate.

 

[DeaviL]

Does everyone on steam need to fill in their 3 number safety code for CC purchases?

 

[strafer]

Why do they have this when it's not being used

https://twitter.com/Steam_Support

 

[kAmui-]

So if you don't store your payment info on Steam you're good, right?

There's still other info like email that could have been seen by others.

 

[The Dear Leader]

"You have got one new item in your inventory."

Valve sending complimentary 33% off Half Life 2 coupons as compensation.

 

[Relaxed Muscle]

Am I safe if I didn't login today and I don't have my credit card or PayPal account saved ?

At least in the second part you should be safe, but is possible that people got your personal data: adress, phone, mail, account name.

So you should keep vigilant, regarding at least accounts who might use the same mail, for example.

 

[Fergie]

I saw that some people were able to enter game/software licences on the same account details page with remove next to some games.

Can some licences be actually removed?

 

[hlhbk]

So is Steam down now? I wasn't charged for anything, unlinked my PayPal account through PayPal, and changed my PayPal password. I just want to play my games in offline mode.

 

[Unain]

I've got $1 on my steam wallet... Bad Rats incoming!

 

[Marele Viorel]

Connection Error - I got this after the client update, a few minutes ago. I'm from Romania.

 

[Silent Hill]

I just get a black screen now.

Hopefully this will get fixed asap. Scary stuff.

EDIT

Ijust restarted Steam and can no longer log in.

 

[udivision]

From the Steam forums:

But what is the danger of you don't?

 

[system11]

What a mess. Just logged in directly to Paypal without checking Steam, and cancelled the payment authorisation.

 

[Cerity]

Thank fuck my billing address & phone number is some mcdonalds in Ukraine and that I'm with a decent enough CC company.

 

[Tainted]

From the Steam forums:

If you haven't seen anything billed against your paypal account by now, there is probably no need to do this as the account pages / Store are now offline and will presumably stay that way until this is all fixed.

 

[Theecliff]

so have valve not officially responded at all yet? what an absolute shitshow.