Millions of Steam users were met with a nasty surprise on Christmas day as an apparent caching issue on the popular gaming service gave users limited access to random accounts.
Logging in to Steam on 25 December, saw users apparently ‘signed in’ as a random Steam account. While not physically signed in as the users presented, you will be still served the cached information linked to that account in the account information page.
This gives access to email addresses, physical addresses, user names, buying history, wishlists, wallet balances and other private information associated with the account.
The account changes with each refresh of the information page, giving access to more than one account.
On the plus side, account information cannot be altered, and no purchases could be made at the time of writing.
While Steam owner, Valve has not yet issued a statement on the breach, it did pull down the store and community sites in response.
Some Steam users have speculated that only an “unlucky few” accounts have been affected, giving everyone access – though these reports remain unconfirmed.
According to the spokesperson, the issue appears to be down to a bug on the Steam platform, and not hackers as some had feared.