Steam Bans Dev for a Year For Exploiting Potentially Harmful Script Tag Bug

Vulnerability would have potentially allowed hackers to redirect users to harmful websites.

by on 16th Jun, 2014

Developer Tomas Duda has been banned from Steam for reporting a script tag error to Valve which could potentially be used by hackers to redirect gamers to harmful websites. 

The Euro Truck Simulator developer realised that users could use script tags on Steam to redirect visitors to another site. Duda sent people to the Harlam Shake video but as he points out, the vulnerability could easily be used to send people to phishing websites or to steal personal information. 

For discovering the flaw in Steam's code and bringing it to Valve's attention, Duda was banned from Steam and the client's Partner access program.  

Despite this, it seems that Valve has yet to actually fix the error. 

With over 70 million Steam users, the amount of data which could be potentially compromised by altering script tags is enormous as is the potential for harm to users' systems. 

We'll update this story as it develops.

Stories from around the web