A few game developers experienced unauthorized access to their Steam accounts. The attackers then updated these games with malicious software. Fortunately, the impact was limited, with less than 100 Steam users installing these games at the time of the malware insertion. Valve, the company behind Steam, promptly informed the affected users via email.
Enhanced Security Protocols
To counteract such threats in the future, Valve has introduced a stringent security measure. Starting from October 24, game developers will need to undergo a two-factor authentication process before updating the default branch of any released game. This is the version that gets automatically delivered to players during updates. The authentication will be facilitated through an SMS text message, making it mandatory for developers to register a mobile number with Steam. This move might pose challenges for developers without mobile phones, but Valve emphasizes that this step is crucial for the safety of its user base.
This isn’t an isolated incident. Valve has reported an increase in sophisticated attacks targeting developers’ accounts on Steam. Steam partners will also need SMS verification to add new members to their groups to further enhance security. Moreover, Valve is considering extending this two-factor security measure to other backend operations on Steam in the near future.
One of the games affected by this breach was “NanoWar: Cells VS Virus.” Its developer, Benoît Freslon, revealed that he fell victim to malware, which compromised his browser access tokens. This breach gave the attacker temporary access to various web services he was logged into.
Stay updated with the latest news in gaming and esports by signing up for early access to TalkEsport’s Mobile App. Follow us on Twitter and Google News to ensure you never miss the exciting updates.