In an official announcement, Path of Exile developers Grinding Gear Games reported a security breach on their Steam page. A malicious news post containing a phishing link was posted from a compromised account, potentially putting players at risk. Although the post was swiftly removed, players are urged to take precautionary measures to safeguard their accounts.
What to Do If You Are Potentially Affected
If you did not click on the phishing link posted by the official Grinding Gear Games account on Steam, you do not have anything to worry about but we strongly recommend having 2FA enabled on Steam to safeguard yourself from potential incidicents like these. If you think you have been affected, here are some steps you can take:
Change your Steam password immediately. Use a strong password that you don't use for any other accounts.
Enable two-factor authentication (2FA) on your Steam account. This will add an extra layer of security to your account and make it much harder for hackers to steal it.
Scan your computer for malware. There is a possibility that the phishing link may have also downloaded malware onto your computer. You can use a reputable antivirus scanner to check your system.
How to Enable Two-Factor Authentication on Steam
Using Email:
Log in to Steam (either through the application or web browser).
Click on your profile name at the top right corner and select "Account Details" from the dropdown menu.
Under "Account Security," select "Manage Steam Guard."
Choose the option to "Get Steam Guard codes by email."
Steam will send a verification code to your email address. Enter this code and confirm to finalize enabling Steam Guard.
Using the Steam Mobile App:
Download and install the Steam Mobile App on your smartphone.
Sign in to the app using your Steam account credentials.
Within the app, navigate to the "Steam Guard" tab.
Select "Add an authenticator" to set up the mobile authenticator.
You might need to verify your phone number by entering a confirmation code sent via SMS.
Once set up, you'll have three options for confirming Steam logins:
Scan a QR code presented by Steam during login.
Approve login requests through a notification on your phone.
Enter a code generated by the Steam Mobile App.