Steam Tightens Security for Developers After Malware Attacks
-
Valve introducing new security measures for Steam developers after recent malware attacks. Developers must confirm identity via SMS when publishing new game versions.
-
Attacks resulted in hackers taking over developer accounts and adding malware to game builds. Impacted fewer than 100 Steam users who installed infected games.
-
Indie developer Benoît Freslon was a victim, with hackers stealing browser tokens. He noted 2FA was useless since tokens still active in browser.
-
Valve rolling out changes requiring phone number associated with Steamworks account. Must enter confirmation code sent via text when publishing new game builds or adding users.
-
New security measures start on October 24. Will not impact unreleased games or beta branch updates.