May 15, 2025 – CK Computers News

A dataset containing the phone numbers of up to 89 million Steam users has surfaced for sale on the dark web. However, Valve, the company behind Steam, has confirmed that its systems were not breached.

What Was Leaked?

The leaked information includes older SMS messages that were previously sent to users who had requested Steam one-time passcodes (OTPs). Valve says these messages were not linked to Steam account credentials, passwords, payment details, or any other personal information.

In a public statement, Valve clarified:

Valve attributes the exposure to the way SMS messages are transmitted, noting that they are unencrypted and pass through multiple providers, which could have made them vulnerable.

Should Steam Users Be Concerned?

Valve says there is no need to reset your password. However, it's a good reminder to stay alert. If you receive any unexpected account security messages or login codes that you didn’t request, treat them as suspicious.

Recommended Actions:

• Review your Steam account security settings

• Enable the Steam Mobile Authenticator for extra protection

• Avoid reusing passwords across multiple accounts

• Stay alert for phishing emails or scam messages related to gaming or Steam

The Bottom Line

Although this leak sounds alarming, it does not appear to be a direct compromise of Steam’s systems. Instead, it highlights the risks associated with SMS-based authentication and data handling across third-party providers. Valve is still investigating the origin of the leak but reassures users that their personal data remains secure on Steam's platform.