There might be a breach of 89 million Steam 2FA codes and possibly user credentials via a supplychain-attack at the Valve 3rd party supplier "Twilio."
As far as I know, this is still unconfirmed, but out of an abundance of caution, if you have a Steam account, change your password, reset your 2FA code / enable 2FA, and make sure you're not reusing your Steam password anywhere else. These accounts will be compromised as well.
https://thedefendopsdiaries.com/steam-data-breach-allegations-unraveling-the-twilio-connection/
https://www.bleepingcomputer.com/news/security/twilio-denies-breach-following-leak-of-alleged-steam-2fa-codes/
#steam #valve #databreach #leak #cybersecurity
ℂ𝕖𝕝𝕖𝕤𝕥𝕖@world: /# :blinking_cursor: /
npub1xc…xjpcr
2025-05-14 15:09:08
Author Public Key
npub1xcn62p2u5ctsfsg5p8ynnvzaz2hae5c5jdqzazgjnauy2ggqu8cq6xjpcrSeen on
wss://relay.mostr.pubPublished at
2025-05-14 15:09:08Event JSON
{
"id": "10075dd23eca173ec3cdd0a90ba2c61c89bef011d9f3bf3b42df15c4c286e2c4",
"pubkey": "3627a5055ca61704c11409c939b05d12afdcd31493402e89129f78452100e1f0",
"created_at": 1747235348,
"kind": 1,
"tags": [
[
"t",
"steam"
],
[
"t",
"valve"
],
[
"t",
"databreach"
],
[
"t",
"leak"
],
[
"t",
"cybersecurity"
],
[
"proxy",
"https://infosec.exchange/users/celeste_42bit/statuses/114506815770510703",
"activitypub"
],
[
"client",
"Mostr",
"31990:6be38f8c63df7dbf84db7ec4a6e6fbbd8d19dca3b980efad18585c46f04b26f9:mostr",
"wss://relay.mostr.pub"
]
],
"content": "There might be a breach of 89 million Steam 2FA codes and possibly user credentials via a supplychain-attack at the Valve 3rd party supplier \"Twilio.\"\n\nAs far as I know, this is still unconfirmed, but out of an abundance of caution, if you have a Steam account, change your password, reset your 2FA code / enable 2FA, and make sure you're not reusing your Steam password anywhere else. These accounts will be compromised as well.\n\nhttps://thedefendopsdiaries.com/steam-data-breach-allegations-unraveling-the-twilio-connection/\n\nhttps://www.bleepingcomputer.com/news/security/twilio-denies-breach-following-leak-of-alleged-steam-2fa-codes/\n\n#steam #valve #databreach #leak #cybersecurity",
"sig": "b3962f607c04e1d6c9d8d62785afe0946121f263d7bf0b87b8c454758bce73668f449a9097f761dc2fe21a718bd2b93c557d5d2468163305e1d4316f0fe78474"
}