Report: Steam Hit By Steam Profile Page Exploit

By   /   Feb 7, 2017
Steam Profile Page Exploit

Steam is the biggest marketplace for PC gamers and according to a report, there is a Steam Profile page exploit that can steal your login information.

Also See: What Does Gabe Newell Think of Pornographic Content on Steam?

According to a Reddit post, currently there is a risk for Steam users “when viewing or simply opening PROFILE pages of other steam users as well as your OWN activity feed”. The report suggests to avoid viewing suspicious Steam profile pages due to the Steam Profile page exploit and has also detailed a couple of steps to protect your account.

Read More Malaysian University Promises to Make You God-Like in Dota 2

Currently, there is a risk (i.e. phishing, malicious script execution, etc.) involved when viewing or simply opening PROFILE pages of other steam users as well as your OWN activity feed (both desktop and mobile versions on all browsers). I would advise against viewing suspicious profiles until further notice and disable JavaScript in your browser options. Do NOT click suspicious (real) steam profile links and Disable JavaScript on Browser. Appropriate information has been forward to Valve and this issue should be resolved soon, sorry for any inconvenience.

Those who are possibly affected by this Steam Profile page exploit should change the password for their account, enable the mobile authenticator through Steam mobile app, de-authorize Steam Guard on all other profiles from settings, and restart your router or change the IP.

One Redditor, DirtDiglett, claims that this exploit is real and users should “triple-check URL” before entering their log-in information.

Valve is yet to confirm the existence of this exploit but it is better to be safe than sorry, and there is no harm in being careful.