I’ll just leave this here;
https://steamcommunity.com/groups/WeAreUnitedGamers#announcements/detail/43137590289947320
So , as long as you don’t do multiplayer you should be ok until the fix
Fortunately Valve frequently patches exploits on the engine.
The link is valid, it’s just Steam being offline making it not display.
They do, but usually not fast enough.
All it takes is 1 sec to click on a server that has it running & get infected, a quick note i’d like to make about this exploit is it does not target only Steam, once exploited the attacker can feed you the malware he wants, be it keylogger, general password stealing software, spy programs, etc,) it is not limited to Steam only, this information is just not shared in that video.
This is already a few days old (at least thats when it’s been made public, a select few could have been using it already and not disclosed its existence) and has not been issued a patch for all affected games, this is not fast enough when talking about security vulnerabilities that affect the most played game engine, Source.
Valve doesn’t fix security issues very fast as far as i am aware from past experiences, they fix them, but not fast.
An update has been pushed that fixes the security issue i’ve originally posted about in MOST games.
Notice the fix has arrived 10 days after my post, a time this long is not acceptable when talking about security issues, please note how “fast” Valve pushes out security updates for future reference.
Just fyi, this bug never affected BMS. We run on a version of the engine not affected, our programmers verified this and checked for the bug.