Protect your corporate IT network from hackers and other unwanted intruders with Proxy Sentinel™. Click here for all the details and get the peace of mind you deserve.
Back to our Homepage Proxy Sentinel™ high performance Internet proxy server and secure firewall solution Firewall Sentinel™ secure & powerful Internet firewall solution About Internet Security.ca and GCIS Frequently Asked Questions on Internet security issues Internet Security Industry News - Stay informed of what's happening Contact Internet Security.ca today and order your Proxy Sentinel™ or Firewall Sentinel™ server now!

Security experts discover critical security issue in Steam software

Sponsered ads:
Read the latest IT news. Visit ItDirection.net. Updated several times daily.

If you need reliability when it comes to SMTP servers, get the best, get Port 587.

Get a powerful Linux Dual-Core dedicated server for less than $2.67 a day!

Share on Twitter.

February 8, 2017

We learned today that internet security researchers have discovered a critical security vulnerability in Steam, an ordinary platform for PC gaming users.

The security flaw, which has since been patched, allowed potential hackers to add malicious code to a user profile, bypassing Steam's security measures.

It was discovered by security researcher crakalo, and could have been used to redirect victims to a phishing site or a web page loaded with malware, among other nasty exploits.

We invited the software maker dubbed 'Valve' to comment on the security vulnerability, but we've yet to hear back and will update this story when we learn more.

Over the recent past, Valve has had a history of cross-site scripting (XSS) issues, as internet security watchers have been quick to note, and this one is more serious than most.

The gaming platform needs to go to the next level on security in response to heightened threats, it was duly noted by users.

To be sure, Daniel Miessler, director of advisory services at ethical hacking firm IO-Active, commented-- "Video games have become mainstream, and along with that popularity has come hundreds of security issues. The XSS attack against Steam is old but popular, known as persistent XSS."

"It's called persistent because the attacker makes a change to something relatively static, like a profile, and then anyone who visits that page gets the payload. This is the same type of attack that took down MySpace," he asserted.

Miessler helped develop the new OWASP Game Security Framework, among other projects. As a general rule, most gaming platforms are prone to internet security problems since most makers don't give security much consideration when coding their software.

Sponsered ads:
Read the latest IT news. Visit ItDirection.net. Updated several times daily.

If you need reliability when it comes to SMTP servers, get the best, get Port 587.

Get a powerful Linux Dual-Core dedicated server for less than $2.67 a day!

Share on Twitter.


Home | Proxy Sentinel™ | Firewall Sentinel™ | FAQ | News | Sitemap | Contact
Copyright © Internet Security.ca    Terms of use    Privacy agreement    Legal disclaimer