You might remember that towards the end of last year, Valve announced that Steam’s forums and database had been
In this update, Newell re-states that position and goes into a little more detail about what the investigation into the hack has found. The compromised data was “a backup file with information about Steam transactions between 2004 and 2008” which contained “user names, email addresses, encrypted billing addresses and encrypted credit card information” but no Steam passwords.
“We do not have any evidence that the encrypted credit card numbers or billing addresses have been compromised” Newell states, “However as I said in November it’s a good idea to watch your credit card activity and statements”.
He adds that Valve is still working with law enforcement authorities to find out more.