You are viewing a single comment's thread.

view the rest of the comments →


[–] Codewow 38 points 12 points (+50|-38) ago 

Get over it already. You can't change the past. Someone saw the last 4 digits of your card, now all they need to do is get the rest of them, which would take a fuckton of prying unless you're completely oblivious. Yes, it's a big issue. Yes, an engineer made a mistake when they were spinning up more servers to bare the load. To be honest, that guy or gal probably already lost their job from it. The issue is fixed, you can relax now. If you're that worried, make sure your card issuer sends you confirmation messages when you buy things. If that's too inconvenient then it's your loss, you shouldn't be compromising your own security just for a little convenience.


[–] tcp 4 points 36 points (+40|-4) ago 

Nothing to see here, folks. Move along... after you pick up that can.


[–] InDifferent 4 points 15 points (+19|-4) ago 

Yes, a QA fuck-up resulting in a bug that lead to a chance that someone saw your info = Valve literally being 1984.

As someone in a sysadmin position, I can safely say that sometimes shit just falls through the cracks and you do the best you can to fix/revert it as quickly as possible.

[–] [deleted] 1 point 26 points (+27|-1) ago 



[–] whynotanon1 6 points 5 points (+11|-6) ago  (edited ago)

Haha do you people even know how much information is publicily available? Remember when we put everyones name and phone number in a big book and gave it to everyone for free? There is more publicily available information at the local court house than any online profile you have. Divorces, marriage paperwork, criminal record, where you lived and how much you paid to live there, if you work in government your salary is likey public too.


[–] Codewow 4 points 2 points (+6|-4) ago 

Your shipping address can be found by following a google trail anyways.


[–] ChillyHellion 1 point 7 points (+8|-1) ago 

I think the biggest issue is the lack of communication. It was hours before we could get a grasp on the scope of the issue, and people were freaked out in the interim. When Valve did release a statement, it didn't really address the scope of the problem either. "Cached page information" is a much more PR-friendly way of referring to users' personal information, and I would have preferred if Valve would have been more upfront with exactly what happened and why it isn't a big deal.

"Users were able to see information belonging to other users" should have been included in the statement somewhere, and if that's not a big deal then they should have spelled out exactly why.


[–] SkepticalMartian 0 points 2 points (+2|-0) ago  (edited ago)

I don't expect most people here to really understand how these things work, but reporting these issues to your customers is rarely as simple as "phone up the PR department and issue a statement" moments after the issue is found.

It takes time to figure out the scope and size of a problem. Sometimes what caused the issue is not always obvious, and you really want to be sure you know what you're talking about before making a public statement.

Not only that, but you have to consider the hierarchy involved. A programmer can't make a statement on behalf of the company, nor should he. This is far more likely to get you fired than making an honest mistake. Also consider it occurred during a period when a large portion of the company was likely on holidays. All this cross communication, and hunting down people who may or may not be working due to the holiday takes time.


[–] common_sense 2 points 4 points (+6|-2) ago 

Yeah, let's just give this massive corporation a break for leaking our personal information. It's totally not a big deal at all, move along folks.

[–] [deleted] 0 points 6 points (+6|-0) ago