... and unless Bluenews.com or espn.com start trying to hack the planet, anyone who runs into this vulnerability (again, with an unsecured browser) are completely at fault here?
Good. Looks like more "security problems" I won't have to worry about.
The exploitable vulnerability with computers sit's in front of the keyboard.
It's almost as if there is no reason for any of the larger spyware offenders to spend any time on this... because they would have been better off exploiting the browser in use to launch the steam URL in the first place. Browsers that are on many more computers than steam clients.
The "quick uninstall steam" crowd here is hilarious. How about "quick, don't click on stupid shit anyway, regardless of if its steam or some other program on your computer being exploited".