That would be the ultimate but i merely said this as an example, as far as i know, i havent got any problem with one of my accounts (forum/game or other) i have some for 5 years and some for 10 and never had any problems.

I am carefull with clicking links, i use a AV and a live animalware protection tool, i have all my updates from all software and windows, so i did all things possible to protect myself.

So if a online games account would be accesed by a malicious 3rd party then it is not my doing.
The rest of the safety of the games accounts lie with the games providers if they have evrything right tehre should be no problems.
And sofar i haven got the slightest problem.


:D thank you i am glad that i made you laugh... i try to bring some smiles to people now and then...
and i am happy i managed to make you smile...

and ofcourse i know that you cant disable your internet, we are so dependent on it,
heaven forbids... if my connection is off for 5 minutes i start to sweat and panic.... omg no internet .... i try not to think of having no internet for a week ...

I was without an internet connection for a week a while ago. I spent it playing GOG games.

thanks for the reply

yes thats a way to do it, almost forgot i have loads of games i still need to play,
thanks again for the tip.

You need internet to download the installers... maybe go back some of 'em up somewhere (;

i download the things right after i bought them, otherwise i might forget what i have, i have 25 or more games that still need to be played by me, so i am safe if the internet would be down for some long maintenance.

This issue has already been resolved according to VALVe and reddit users who have verified.
http://www.reddit.com/r/Steam/comments/2y97zk/an_exploit_was_found_on_steam_community_profile/

I don't know how Steam left themselves open to such a vulnerability in the first place.

Cross site scripting flaws are among the top most common security weaknesses on the web along with cross site request forgery, clickjacking and others. It really isn't shocking news at all to be honest. Just "yet another XSS flaw on the web", and probably one of about 10,000 on a given day really. :)

You mean like GOG discussion boards vulnerability which used to allow inserting scripts into topic names? You don't let it happen, someone just screws up and it happens. And as skeletonbow pointed out, it's incredibly easy to screw up in this area.

Some days ago (can't remember the exact date) I got a friend request from someone I didn't know, and who was at 0 level. Could that have been related to the vulnerability? Did he try to make me visit their profile page?

Not that I think I'm at risk. Since I didn't immediately recognize the person, I just denied the request and forgot all about it; didn't even visit the person's page to see who the hell they might be :P Just curious is all.

Those are generally just phishing bots that will send you a message with a phishing link and hope you follow it, compromising your security that way.