- Various details of over 89 million Steam accounts have reportedly leaked in a Data Breach.
- The information includes 2FA codes of messages, Delivery status, and Metadata.
- Valve has officially confirmed that no Steam account data or user accounts were compromised.
Update (as on May 15): Valve posted on the Steam Community after examining the leaked data that the systems haven’t suffered a breach. The sample data contained codes that were valid for 15 minutes and the phone numbers. And as a result, users don’t need to change your passwords. Twilio also responded that there’s no evidence to suggest they were breached.
When it comes to gaming, Steam is considered the holy grail and is incredibly popular. The platform has existed for ages and is not just known for gaming. But it’s pretty tight security standards, giving users a deep control over their accounts. Well, Steam’s incredible security streak just ended as someone has reported a massive data breach that may have compromised millions of accounts.
According to a LinkedIn post from Underdark AI, over 89 million Steam accounts and the 2FA codes of their Messages, Delivery status, Metadata, and Routing costs have been compromised. The info was spotted first by an X user, MellowOnline1. According to the original source, the threat actor put the information up on the dark web and is asking for $5000 in exchange.
They also posted a link to sample data and mentions of internal vendor data. Underdark AI then posted an update in the same post that the leaked 2FA are routed by Twilio. Later, a Valve representative reached out to the X user, saying they don’t use Twilio.
There’s no confirmation if the data breach actually occurred. What are your thoughts on the reported Steam data breach? Do you think it’s genuine? Let us know in the comments.
