XSS marks the spot: Steam vuln dangles potential phishing line

Flaw let users add malicious code to their profile pages

Security researchers have discovered a significant security vulnerability in Steam, Valve's digital distribution platform for PC gaming."