“We continue our investigation of last year’s intrusion with the help of outside security experts. In my last note about this, I described how intruders had accessed our Steam database but we found no evidence that the intruders took information from that database. That is still the case.

Recently we learned that it is probable that the intruders obtained a copy of a backup file with information about Steam transactions between 2004 and 2008. This backup file contained user names, email addresses, encrypted billing addresses and encrypted credit card information. It did not include Steam passwords.

We do not have any evidence that the encrypted credit card numbers or billing addresses have been compromised. However as I said in November it’s a good idea to watch your credit card activity and statements. And of course keeping Steam Guard on is a good idea as well.

We are still investigating and working with law enforcement authorities. Some state laws require a more formal notice of this incident so some of you will get that notice, but we wanted to update everyone with this new information now.”

Enough said.

Also, I’d like say special thanks to the people that helped get CRAM to CES:

Thank you to Blackhagen Design for an awesome looking booth device!
Thank you to Design Center for nailing our booth presentation and iPad application!
Thank you to The M Group for birthing our new website!

Subscribe to our YouTube channel and follow me on Twitter for updates from the show!

Until next time,

Matt

Let’s name a few floating around Internet: RSA, Citigroup, Lockheed Martin, San Francisco’s subway system, Epsilon, Sony, NASA’s Goddard Space Flight Center, IEEE, Massachusetts Department of Labor and Workforce Development, Gawker Media, Trapster, University of Wisconsin, Sega, Trion Worlds (Rift), Health Net, and the Pentagon’s official credit union.

All this despite having the money for top talent and infrastructure.  The fact of the matter is that if you can touch it, you can steal it.  If there is an exposed interface for the unseemly to attack, they will…sooner or later they will succeed.

Here’s the problem.  The companies (and governments) that are responsible for keeping our personal data safe need to recognize that the Internet is not secure…and then do something about it.  With the current way business is done right now, the only way to keep absolutely yourself safe is go offline completely, keep your money in your mattress, get a job that pays cash, and live with your mom.  I really don’t mean to sound like Ted Kaczynski but how do you protect yourself when you can do everything right and then your game console sells you out?  There has to be a happy medium between convenience and pretending to live in 1892.

On a totally unrelated note, CRAM has a security platform that combines software encryption, hardware encryption, physically secure endpoints, and works offline.  (“they” make me plug the product)

Until next time,

Matt

I am the Chief Technology Officer from CRAM Worldwide.  I have 15 years of custom software development and management experience.  I have worked on everything from a day trading back office to energy trading system to control area operations to e-commerce to large custom content management systems.  I have had the pleasure of working with some of the brightest, driven entrepreneurs around.  Everything I know is a result of keeping really smart people around me, learning from everything, and having an exceptional b.s. filter.

CRAM is a new hardware and software-based security platform we are developing.  The first product to be implemented is Venu, which is focused on the entertainment industry.  Instead of copying and pasting from the website, just go to cramworld.com to learn more.  The site will be updated by the first week of January…so watch for it.  It will have a lot more information than it currently does.

I will be using this blog to discuss the CRAM platform, security related thoughts, and general ideas on information technology and development.  I’ll be posting interesting (I hope) items as we continue through our design and development life cycle and get closer to product launch.  In the short term, I will be posting from the 2012 Consumer Electronics Show.  CRAM will be presenting the Venu product there this year.  As time permits, I’ll be taking some time to run around the show and taking video of cool stuff I find.

Hopefully, the next post will be the first in a long line of interesting posts.  I’m setting the bar low with this one!