Valve Steam bug sees accounts hacked

A serious bug in Valve’s Steam engine has allowed cybercriminals to steal user credentials over the past week, according to reports.

Kotaku reports that although the fallout makes it sound like a complex issue, the bug appears to be pretty basic – a video in the Kotaku post shows that from the “lost password” section of Steam support all an attacker needed was your account name, and from there they could reset your password, choose a new one and get access to your account, with no verification or email address needed.

Valve Steam bug sees accounts hacked