Steam being hacked?

kthula666 · 7 Mar 2014 at 14:16

After three false tries 15 min delay gogo hackers or sms warning woohoo

bledd · 8 Mar 2014 at 09:08

Burnsy2023 said:
Or even better, use gmail and 2 step auth.

I used to have this, but found it a PITA

JBod · 8 Mar 2014 at 09:17

Theophany said:
Obligatory xkcd:

e: forgot this wasn't /.

I was about to post this. Although it is a comic it is very very valid.

KIA · 8 Mar 2014 at 10:29

bledd. said:
I used to have this, but found it a PITA

Why is it a PITA?

Twirlywoos · 8 Mar 2014 at 11:17

bledd. said:
Use a crazy password for your email.

Use a different crazy password for Steam.

Very good site here for testing passwords.
https://howsecureismypassword.net/

^Personally, I'd only type in something 'similar' to my password into a site like that, but you get the idea. Good for testing your old passwords to see how insecure they are.

-My email password (edited a bit for the site)

My password doesn't register

Diagro · 8 Mar 2014 at 11:57

8 nonillion years
wow

bledd · 8 Mar 2014 at 12:33

KIA said:
Why is it a PITA?

Away from home, pc off, No phone = can't access email

Pawnless Endgame · 8 Mar 2014 at 16:39

Ace Modder said:
what is kickstarter?

Not sure if serious, but Kickstarter is a platform for project work, usually in the form of a piece of software. It can be anything though, not just computer related. You set a time limit and funding goal for yourself. Fans that are interested will each pay a small sum to allow the project creator to keep going. The paying fans will then get the full product once completed. If it doesn't get complete, I think they get their money back. I know a friend who is tracking (and paying) a few role playing game projects on Kickstarter.

Destination · 8 Mar 2014 at 17:07

JBod said:
I was about to post this. Although it is a comic it is very very valid.

No
No it is no
Given the original lie posted as a fact, step 1, add a single letter to the end and the combination will never be cracked as they won't be looking for it.
Its rotten use of statistics

Rainmaker · 8 Mar 2014 at 17:37

109 quattuordecillion years

I win the internet. \

/

e: My other password is even better: 8 quindecillion years. Easy to remember, too. HK, it's all about the search space of the password. Given potentially billions of guesses per second, the 'extra letter' would eventually be tried even if randomly. 'Looking for it' implies a dictionary based attack or similar.

KIA · 8 Mar 2014 at 17:59

bledd. said:
Away from home, pc off, No phone = can't access email

You can print off backup codes.

covenantuk · 8 Mar 2014 at 18:09

Freakbro said:
I don't get this using such complex passwords, as are they ever brute forced by using a permutation method? or are they just intercepted, keylogged or stolen from someone elses database, thus rendering the complexity irrelevant?

With the compute power available to today's GPUs you can brute force passwords under 15-18 characters in not-unreasonable time frames. If you use an 8 character or less password you're asking for trouble especially if it contains a recognisable word.

Having said this, mostly they're either hacked from websites or phished via email.

trentlad · 8 Mar 2014 at 18:23

Freakbro said:
1 Year to crack my Steam password....

Mate! You just made me crease with tears after seeing what the others got.

Fair point though, a year to crack is good right now but with the exponential rate of processing power it'll be trivial.

colax · 9 Mar 2014 at 05:23

majnu said:
My password doesn't register

The best part about that is the code on the screen, and the code DATA said don't match. Someone made a boo boo.