“The data includes message contents, delivery status, metadata, and routing costs — suggesting backend access to a vendor dashboard or API, not Steam directly.”
Why it’s dangerous: Phishing: Hackers could use the info to send fake but convincing messages to users. Session hijacking: If attackers can intercept or replay 2FA codes, they might bypass login protection.
“The data includes message contents, delivery status, metadata, and routing costs — suggesting backend access to a vendor dashboard or API, not Steam directly.”