Steam Hacker Says More Vulnerabilities Will Be Found

An anonymous reader shares an article on Ars Technica: The teenager who grabbed headlines earlier this week for hacking a fake game listing on to Valve's Steam store says there are "definitely" more vulnerabilities to be found in the popular game distribution service. But he won't be the one to find them, thanks to what he sees as Valve "giv[ing] so little of a shit about people's [security] findings." Ruby Nealon, a 16-year-old university student from England, says that probing various corporate servers for vulnerabilities has been a hobby of his since the age of 11. His efforts came to the attention of Valve (and the wider world) after an HTML-based hack let him post a game called "Watch paint dry" on Steam without Valve's approval over the weekend."It looks like their website hasn't been updated for years," Nealon told Ars. "Compared to even other smaller Web startups, they're really lacking. This stuff was like the lowest of the lowest hanging fruit."

Not surprised

[fredgiblet]

I'm totally unsurprised by the assertion. I honestly wonder where the hell Valve's money goes. They must be making it hand over fist, yet they can't fix their CS even though they keep promising to and they haven't made much for new games in forever. We need to get someone to infiltrate Valve and do an expose on their inner workings.