Threat Post

Valve Patches Trivial XSS Bug in Steam

A cross-site scripting vulnerability on the Steam gaming platform has been patched. The flaw could be exploited by simply viewing a crafted profile. Valve Corp., has patched a cross-site scripting ...
Threat Post

Researcher Discloses Second Steam Zero-Day After Valve Bug Bounty Ban

After Valve banned him from its bug bounty program, a researcher has found a second zero-day vulnerability affecting the Steam gaming client. A researcher has disclosed a zero-day privilege-escalation ...
vg247

Valve has squashed the Steam bug that let you steal any account

Steam users were highjacking each other's accounts all weekend, but Valve has put a stop to it. We didn't want to report on this while it was happening because it was so, so easy to do, but a frankly ...