Steam being hacked?

[kthula666]

After three false tries 15 min delay gogo hackers or sms warning woohoo

 

[bledd]

Or even better, use gmail and 2 step auth.

I used to have this, but found it a PITA

 

[JBod]

Obligatory xkcd:

e: forgot this wasn't /.

I was about to post this. Although it is a comic it is very very valid.

 

[KIA]

I used to have this, but found it a PITA

Why is it a PITA?

 

[Twirlywoos]

Use a crazy password for your email.

Use a different crazy password for Steam.


Very good site here for testing passwords.
https://howsecureismypassword.net/


^Personally, I'd only type in something 'similar' to my password into a site like that, but you get the idea. Good for testing your old passwords to see how insecure they are.


-My email password (edited a bit for the site)

My password doesn't register

 

[Diagro]

8 nonillion years
wow

 

[bledd]

Why is it a PITA?

Away from home, pc off, No phone = can't access email

 

[Pawnless Endgame]

what is kickstarter?

Not sure if serious, but Kickstarter is a platform for project work, usually in the form of a piece of software. It can be anything though, not just computer related. You set a time limit and funding goal for yourself. Fans that are interested will each pay a small sum to allow the project creator to keep going. The paying fans will then get the full product once completed. If it doesn't get complete, I think they get their money back. I know a friend who is tracking (and paying) a few role playing game projects on Kickstarter.

 

[Destination]

I was about to post this. Although it is a comic it is very very valid.

No
No it is no
Given the original lie posted as a fact, step 1, add a single letter to the end and the combination will never be cracked as they won't be looking for it.
Its rotten use of statistics

 

[Rainmaker]

109 quattuordecillion years

I win the internet. \/

e: My other password is even better: 8 quindecillion years. Easy to remember, too. HK, it's all about the search space of the password. Given potentially billions of guesses per second, the 'extra letter' would eventually be tried even if randomly. 'Looking for it' implies a dictionary based attack or similar.

 

[KIA]

Away from home, pc off, No phone = can't access email

You can print off backup codes.

 

[covenantuk]

I don't get this using such complex passwords, as are they ever brute forced by using a permutation method? or are they just intercepted, keylogged or stolen from someone elses database, thus rendering the complexity irrelevant?

With the compute power available to today's GPUs you can brute force passwords under 15-18 characters in not-unreasonable time frames. If you use an 8 character or less password you're asking for trouble especially if it contains a recognisable word.

Having said this, mostly they're either hacked from websites or phished via email.

 

[trentlad]

1 Year to crack my Steam password....

Mate! You just made me crease with tears after seeing what the others got.

Fair point though, a year to crack is good right now but with the exponential rate of processing power it'll be trivial.

 

[colax]

My password doesn't register

The best part about that is the code on the screen, and the code DATA said don't match. Someone made a boo boo.