Christmas day usually comes with some glitches for online gaming services, and this year is no exception. Unfortunately, Steam was the victim this holiday.
Steam is in the middle of its huge winter sale, which means tons of people are buying and playing games on the platform now. And several Reddit, NeoGAF and Twitter users admitted Friday that they could see other users’ account information, including credit card numbers and addresses, instead of their own.
Some even reported having more money in their Steam Wallet than they had originally.
Valve, Steam’s owner, confirmed the internal error in an email to The Verge. It has since been repaired, according to Venture Beat.
“Steam is back up and running without any known issues. As a result of a configuration change earlier today, a caching issue allowed some users to randomly see pages generated for other users for a period of less than an hour. This issue has since been resolved. We believe no unauthorized actions were allowed on accounts beyond the viewing of cached page information and no additional action is required by users.”
It is unclear why the company has not released any sort of apology, considering several users’ personal data was exposed. It is also unclear how many users were affected by the problem.
In a message on Steam’s forums, a moderator said earlier Friday that “Steam is not hacked.” It also said that “credit card info and phone numbers are, as required by law, censored and not visible to users.”
The Steam Database Twitter account, which is not associated with Valve, elaborated on the issue. “By the way, this is not a security breach. This is page caching gone rogue. Most likely not respecting Cache-Control headers,” their tweet read.
A member of NeoGAF posted the following example of what a user might see with the affected user’s email blocked:
This is unfortunate for Steam users, but everything seems to be back on track. Hopefully it stays that way!