TGFC Lifestyle - Powered by Discuz! Board

标题: steam炸了，炸的漫天都是 [打印本页]

作者: alalaka 时间: 2015-12-26 05:26 标题: steam炸了，炸的漫天都是

posted by wap, platform: Firefox
一开始是打不开，打开以后账号变成一个荷兰人了。邮箱账号什么的都看到了。
G胖是药丸

作者: alalaka 时间: 2015-12-26 05:26

posted by wap, platform: Firefox
再刷新一下变成俄罗斯人了，炫酷

作者: thetable 时间: 2015-12-26 07:17

[attach]811613[/attach]

作者: grammyliu 时间: 2015-12-26 07:41

posted by wap, platform: iPhone
卧槽，这么严重？我用手机客户端打开不开商店页面。之前传言的黑客还在圣诞节攻击Stram是真的？

作者: 鬼冢英吉 时间: 2015-12-26 07:50

posted by wap, platform: iPhone
荷兰人连steam帐号都偷？狗日滴高科技啊

作者: yuiileo 时间: 2015-12-26 08:03

posted by wap, platform: 华为 Ascend Mate 7
啥黑客组织不是宣称要在圣诞端了steam么233

作者: 3036273 时间: 2015-12-26 09:01

posted by wap, platform: iPhone
我的信用卡信息岂不药丸

作者: ashunicorn 时间: 2015-12-26 09:48

Update: It appears the Steam Store is back online and the issue appears to be resolved. We have yet to hear from Valve in an official capacity, and will update the blog post when we do.

This was not a hack or a DDoS attack. This was highly likely to be a misconfiguration in one of Valve’s caching layers.

If you used a PayPal account and had the details saved, you can unlink your account by logging on PayPal.com and going to Settings and Preapproved payments under the Payment options heading.

Going forward, we strongly encourage you not to store your billing information on the Steam store. Valve have proven multiple times that they’re unable to keep their security standards to a high level.
______________________________________________________
更新了，STEAMDB说了这不是黑客攻击的问题，是SBEAM自己服务器配置错误，而且强烈推荐不要把自己的个人支付信息和渠道绑定在SBEAM上（比如信用卡和paypal），换言之银联这种三方结算反而还安全些……

作者: ashunicorn 时间: 2015-12-26 09:49

引用:

原帖由 3036273 于 2015-12-26 09:01 发表
posted by wap, platform: iPhone
我的信用卡信息岂不药丸

你只要在刚才那几个小时大姨妈的时段内没登陆SBEAM（任何形式，包括客户端和网页）就没有泄露风险

作者: 最后的守护者 时间: 2015-12-26 09:53

posted by wap, platform: Firefox
如果那么严重的话为什么不干脆关闭服务器禁止登陆？

作者: ashunicorn 时间: 2015-12-26 10:14

引用:

原帖由 最后的守护者 于 2015-12-26 09:53 发表
posted by wap, platform: Firefox
如果那么严重的话为什么不干脆关闭服务器禁止登陆？

因为这个是配置时候出的错，估计在进行全球同步，关闭的话也许可能有影响，而且关闭了不是又承认自己傻逼了么……公司越大越不可能主动示弱

作者: 碎南瓜 时间: 2015-12-26 10:16

塑料片玩家发来贺电

作者: bigbigsmallstar 时间: 2015-12-26 10:48

擦我刚才上去一切正常，不会被盗吧

作者: 嵩山左冷禅 时间: 2015-12-26 10:50

posted by wap, platform: Android
这帮黑客太恶心了，就不能干点正能量的事么

作者: sarion 时间: 2015-12-26 10:54

posted by wap, platform: iPhone
我擦，我绑定了信用卡，刚才上去过，现在怎么办？

作者: BR 时间: 2015-12-26 11:03

posted by wap, platform: iPhone
几年没用steam昨晚刚绑信用卡买b社全家桶的表示躺枪，只要删除账号绑定的默认支付方式就行了么

作者: catup 时间: 2015-12-26 11:10

posted by wap, platform: Chrome
还好我没保存信用卡信息
每次买都是手动输入，虽然steam那页面打字超蛋疼

作者: Nemo_theCaptain 时间: 2015-12-26 13:12

https://steamdb.info/blog/recent-caching-issues-on-steam/

This issue means that users’ private information such as email address, billing address, and sometimes credit card details are at risk. As far as we know, this issue is read-only, and no one is able to perform any actions involving your account on your behalf.

This was not a hack or a DDoS attack. This was highly likely to be a misconfiguration in one of Valve’s caching layers.

If you used a PayPal account and had the details saved, you can unlink your account by logging on PayPal.com and going to Settings and Preapproved payments under the Payment options heading.

Going forward, we strongly encourage you not to store your billing information on the Steam store. Valve have proven multiple times that they’re unable to keep their security standards to a high level.

应该是Valve自己的错，不太像是黑客的锅
而且Steam有双重验证，就算密码丢了也不怕，除非你把邮箱和手机也丢了
不过此事再次证明Valve的服务部二逼到极点，这么大的事隔了近10个小时才发一个声明

作者: folkfox 时间: 2015-12-26 19:15

posted by wap, platform: Chrome
还好这段时间没登录，而且从来也不保存信用卡信息。

作者: mieumieu 时间: 2015-12-26 19:16

posted by wap, platform: Chrome
小作坊就是这样的啦

作者: CHARAZNABLE0079 时间: 2015-12-26 22:37

posted by wap, platform: Android
一看就是圣诞节又出去旅游了

作者: zhangyunsony 时间: 2015-12-27 09:48

posted by wap, platform: Galaxy S6 EDGE
一切都是主机厂商的阴毛

作者: extremekara 时间: 2015-12-27 10:10

据说不是黑客攻击，是服务器压力太大多级缓存的页面出错了，对帐号安全无影响。

欢迎光临 TGFC Lifestyle (http://bbs.tgfcer.com/)