Valve Fixes Security Flaws In Steam Community

The Steam community site was deemed unsafe due to XSS (cross-site scripting) exploit that redirect users to a fake or phishing site, and compromise Steam users account. There’s a chance that users might lose their Steam Wallet funds from this vulnerability.

valve account

A post on Steam subreddit warns users of what the exploit does and advises users against clicking on Steam profile links.

  • Redirect you to any non-steam page, for example a phishing login page. From a user perspective it is you going to a legitimate Steam profile, then you see a login page.
  • Utilize scripting to use your Steam Market funds on any item the malicious user chooses, you wouldn’t even need to confirm anything as you’re on a valid login session.
  • Manipulate elements on the page as they see fit.
Currently, there is a risk (i.e. phishing, malicious script execution, etc.) involved when viewing or simply opening PROFILE pages of other steam users as well as your OWN activity feed (both desktop and mobile versions on all browsers including steam browser/chromium),” the warning says. “I would advise against viewing suspicious profiles until further notice and disable JavaScript in your browser options. Do NOT click suspicious (real) steam profile links and Disable JavaScript on Browser.

The good news is that the issue has been fixed by Valve.

Related posts

Watch Tipping Point Trailer in Watch Dogs: Legion

Watch Tipping Point Trailer in Watch Dogs: Legion


Watch Tipping Point Trailer in Watch Dogs: Legion

In Watch Dogs: Legion, near future London is facing its downfall, unless you do something about it. Build a resistance, fight back, and give the city back to the people. It’s time to rise up. Enter the Watch Dogs Legion universe in this intense chase through a dystopian London created by...

Vigor Online Shooter Game is Out Now on Switch

Vigor Online Shooter Game is Out Now on Switch


Vigor Online Shooter Game is Out Now on Switch

Bohemia Interactive's Vigor just launched on the Nintendo Switch platform and is available as the Founder's Pack edition. Vigor is a looter shooter in post-war Norway. In Vigor, the goal is to stay alive and build a shelter that will protect the player against the harsh environment...

Microsoft Flight Simulator Releases on August 18 for PC

Microsoft Flight Simulator Releases on August 18 for PC


Microsoft Flight Simulator Releases on August 18 for PC

Learn to fly in this next generation of Microsoft Flight Simulator by Asobo Studio. Travel the world in amazing detail and experience over 2 million cities, 1.5 billion buildings, and expansive environments from mountains down to roads, trees, rivers, animals, traffic, and more. From...

Leave a comment