The good new is that there was no leak of account information.

While it's not required to change your password or login method, it's usually recommended to do so when events like this occur, just in case. It's also good to make sure that you're using Steam's authenticator for signing into your account when needed.

A Note about the Security of your Steam Account


TM

Thanks! Never even saw anything about it!

I didn't either, oldbroad. Thanks, Trail!

I always have to authenticate when I sign in. It's an annoyance, but it's safer. I actually stopped using saved login information for any of my accounts a while ago.

But I didn't see anything about this, either.

I read about it yesterday. Supposedly affected about 89 million customers.

It sounds as though the only information leaked were one-time codes that are used for authentication and are only valid for a short period of time.

These were delivered to gamers via text, but per the article by Valve there was no association between the codes and the telephone numbers to which they were sent. That may sound confusing, but it's possible that the vendor storing the text data "scrubbed" them of any personal information before archiving them. Not sure why they were archiving them in the first place, so that's just another assumption on my part given Valve's input.

So technically, they aren't classifying it as a "breach", but rather a "leak". That sounds as though an internal or similarly engaged employee from one of their SMS vendors may have had access to the archived texts or someone did breach the vendor, but only pulled this limited information. That's purely an assumption based on their use of the word "leak" and what little information I've so far gleaned.