Hacker advertises alleged database of 89 million Steam 2FA codes, source of leak unknown

EnergyWeaponUser advertised a new archive on the dark web
They claim it holds phone numbers and OTP codes for Steam
Some researchers claim the archive came from Twilio, but the company denied having been breached

EnergyWeaponUser, a known cybercriminal and leaker, is selling a new database which, they claim, holds more than 89 million Steam user records, phone numbers, and one-time access codes.

Steam is a digital games distribution platform developed by Valve. It has more than 130 million monthly active users, which use the platform to buy, download, and play computer games.

Recently, a new thread in an underground forum appeared where the hacker offered the database for $5,000. BleepingComputer was among those who analyzed the records, and claims it holds “historic SMS text message with one-time passcodes for Steam, including the recipient’s phone number”.

Was it Twilio?

However, it is unclear where EnergyWeaponUser picked the archives up. Valve is being silent for the moment. An independent games journalist MellowOnline1 believes the theft is the result of a supply chain attack, with Twilio being the most likely victim.

Twilio is a cloud communications platform that allows devs to integrate different messaging, voice, and video features. Among other things, it provides SMS and MMS messaging, which many companies use for one-time passcodes and 2FA.

However, the company told BleepingComputer that it investigated the claims and found no evidence of compromise.

“There is no evidence to suggest that Twilio was breached,” a spokesperson for the company told the publication. “We have reviewed a sampling of the data found online, and see no indication that this data was obtained from Twilio.”

Another possible explanation is that an intermediary SMS provider could have been breached. At press time, the actual victim was not yet confirmed. EnergyWeaponUser’s claims could not be verified at this time. However, the leaker is rather infamous, as they were previously linked with Cisco, Ford, and HPE breaches.

Steam is warning users to enable Steam Guard Mobile Authenticator and keep an eye on account activity.

Via BleepingComputer

https://cdn.mos.cms.futurecdn.net/hu8VDCFtRdkPJ4X6r5S2AZ.jpg

Source link

Lyngdorf’s compact streamer-amp is “powerful and extremely versatile” — and it’s now reached Australia

5 unmissable Michael Jackson documentaries you need to stream before watching the late singer’s new movie biopic Michael

5 unmissable Michael Jackson documentaries you need to stream before watching the late singer’s new movie biopic Michael

AI agents are quietly handing hackers full system access while users unknowingly grant dangerous permissions

Ex-Israeli Intelligence Official: Shockwaves of Trump’s “Take Over Gaza” Heard, Felt Across Region

What UK political parties are promising in the 2019 general election

Otto Warmbier’s parents want North Korea to suffer for their son’s death

Could a ‘youthquake’ cause Boris Johnson to lose the general election?

Meryl Streep on Anna Wintour Friendship

15 Best Enemies To Lovers Manhwa

10 Greatest Movie Climaxes of All Time, Ranked

The Open Box Asus ROG Xbox Ally X Handheld Gaming PC Drops to a New Price Low at Best Buy

Italy to cut growth forecasts as Eurostat delivers deficit verdict

“The Wall Between Exchanges and Banks is Collapsing” In 2026, Why is Everyone Talking About ‘GxB’?

Earnings call transcript: Arjo Q1 2026 shows stable growth amid challenges

Nativo Resources issues 200 million shares under ATM facility

The YouTuber who has become one of Gen Z’s most beloved celebrities

26 last-minute holiday gifts that are still thoughtful and unique

Practicing gratitude regularly can make you less stressed and sleep better

8 things millennials wish you would just stop getting them for the holidays

Hacker advertises alleged database of 89 million Steam 2FA codes, source of leak unknown

Italy to cut growth forecasts as Eurostat delivers deficit verdict

Meryl Streep on Anna Wintour Friendship

“The Wall Between Exchanges and Banks is Collapsing” In 2026, Why is Everyone Talking About ‘GxB’?

15 Best Enemies To Lovers Manhwa