surf dtoid with 
Rising (10+)
People you follow
Microsoft is stubborn. They have the balls to claim that their network is all perfectly secure and that it just can't be breached, but when it comes to the brute hackers, they try and disavow responsibility by saying "Well that's not our fault, that's the hackers! They used their own software, so we aren't to blame!"
Get your shit together, you lazy twats.
Get your shit together, you lazy twats.
My account was hacked and someone stole $90 from me, thankfully I was using my American Express card for the Xbox Live, so my card company isn't going to take this kind of shit from Microsoft
99.99999% of people use the same email/password for everything, meaning that when one slack-ass system is compromised, ALL of your accounts are then compromised. It's still not the victim's fault that System X was hacked, but let's be honest - people shouldn't be doing this.
What about this don't you understand, Jim?
What about this don't you understand, Jim?
My account was hacked, money spent, account suspended. I rang them every day for 13 days to make sure something was progressing, I was told the same every time "We are investigating". I was accused by customer service reps of selling my account, of being social engineered and best of all, giving someone my details so they could boost my gamerscore. On the 13th day the guy admitted to me "We've not even started the investigation, your claim was filed wrong."
I ended up emailing Major Nelson and guess what? Account was reinstated within the hour.
I ended up emailing Major Nelson and guess what? Account was reinstated within the hour.
Looks like its time to take my card off of live now and buy the 20 cards which saves a lot more money actually
This is an industry wide issue. Absolutely. From key loggers to phishing attempts, gamers are targeted across all mediums, primarily PC. While I understand that the issue of the windows login could allow brute force attacks, the most common is keylogging. Most developers and publishers don't make this very well known, but a few do. The reason why this is a bigger issue is real money is at stake. But, that's just another good reason (there's more than a few) to not leave your credit card info tied to your account.
@DasPooch
Then again, ms uses a continuous liveID for a plethora of services, which includes xbl, email, shopping, semisocial media, messaging systems, etc...
How is that going to be attributed to consumer fault?
Then again, ms uses a continuous liveID for a plethora of services, which includes xbl, email, shopping, semisocial media, messaging systems, etc...
How is that going to be attributed to consumer fault?
I agree with DasPooch. There is this little thing called personal resposibility that people tend to "forget" about when it comes to dealing with any entity bigger than themselves (read: basically anything) and therefore it "can't possibly be my fault so I'll blame Large Corporation XYZ and their 'faulty' systems for something I didn't do right."
Save your lame excuses, I hear them all the time where I work. Grow up and look in the mirror for once.
Save your lame excuses, I hear them all the time where I work. Grow up and look in the mirror for once.
MS, as per usual blaming the customer. When I had multiple RROD with 5 replaced 360's I was always the one at fault. Yeah, funny how I don't know how to plug in a fucking machine in a power outlet source properly, even though I have been doing it for fucking years, and my fucking SuperNintendo still boots up games like no fucking problem and that shit is gathering dust as much as the Wii.
MS customer service is fantastic at fucking making the customer feel fucking stupid. Fuckity fuck fuck fuckers.
MS customer service is fantastic at fucking making the customer feel fucking stupid. Fuckity fuck fuck fuckers.
My friend at work just got hit... it was done through Windows Live he believes. A chinese email was added to his account at random and purchased 5000 MS points, his account is currently locked as they investigate. He was able to request a PW reset again and regain control. But his accounts essentially dead for 2 weeks.
There is a problem, but he believes it's with Windows Live / Xbox.com
There is a problem, but he believes it's with Windows Live / Xbox.com
It's funny how they blame me when I use a special email address which I use nowhere else and a strong password.
No issues here, and until proof is given other than word of mouth, those that did get hacked are idiots.
Technically retrying a password on a website thousands of times isn't a "breach in their security". Retrying a password is a legit function. Their databases weren't hacked. It is however, a huge "LACK of security" to allow someone to try passwords thousands of times without locking the account, just by re-opening the browser.
Sounds like a politician with the wording.
Sounds like a politician with the wording.
I should also mention my friend is a windows engineer at my job and also uses an ASCII pw apparently. It wasn't user negligence.
...ladies and gentlemen of this supposed jury, I have one final thing I want you to consider. Ladies and gentlemen, this is Chewbacca. Chewbacca is a Wookiee from the planet Kashyyyk. But Chewbacca lives on the planet Endor. Now think about it; that does not make sense! Why would a Wookiee, an eight-foot tall Wookiee, want to live on Endor, with a bunch of two-foot tall Ewoks? That does not make sense! But more important, you have to ask yourself: What does this have to do with this case? Nothing. Ladies and gentlemen, it has nothing to do with this case! It does not make sense! Look at me. I'm a lawyer defending a major record company, and I'm talkin' about Chewbacca! Does that make sense? Ladies and gentlemen, I am not making any sense! None of this makes sense! And so you have to remember, when you're in that jury room deliberatin' and conjugatin' the Emancipation Proclamation, does it make sense? No! Ladies and gentlemen of this supposed jury, it does not make sense! If Chewbacca lives on Endor, you must acquit! The defense rests.
MS should be embarrassed. At least implement a Steam Guard-esque system where they have to have access to your email too in order to access your account.
@Zephreus - And is there any evidence that said system has holes being exploited? No? Ok. In the absence of proof (which would be all over the news if verified) that an extremely complex hack has raken place, the simpler and more likely scenario is most likely true.
@N7 - why should anyone care what you coworker "believes"? It's easy for people to makeclaims on the intarwebs.
@N7 - why should anyone care what you coworker "believes"? It's easy for people to makeclaims on the intarwebs.
I like how if PS is hacked then it is a huge issue and Sony was irresponsible for being hacked. If its possible it happened to Microsoft then we clearly didn't use a good password.
This happened to me. My passwords for EVERYTHING are different. Even if people found out my password, how did they know my Windows Live ID? I actually use a gmail account that has nothing to do with my username and they were able to recover my account to their Xbox.
It was rumored that Xbox live was hacked just months ago and MS denied this. Now randomly there are people coming out in droves with their stories. I think this stinks to high hell and MS is playing this poorly.
This happened to me. My passwords for EVERYTHING are different. Even if people found out my password, how did they know my Windows Live ID? I actually use a gmail account that has nothing to do with my username and they were able to recover my account to their Xbox.
It was rumored that Xbox live was hacked just months ago and MS denied this. Now randomly there are people coming out in droves with their stories. I think this stinks to high hell and MS is playing this poorly.
Just because there are more publicized cases in a time period doesn't mean there are more cases altogether in that time period.
There was one, big, unfortunate public case and that person made it their duty to "tell other people's stories." Now more cases are public and providing trolls like Jimmy here an opportunity to speculate in blog form.
Nothing to see here people... at least nothing we haven't seen before.
There was one, big, unfortunate public case and that person made it their duty to "tell other people's stories." Now more cases are public and providing trolls like Jimmy here an opportunity to speculate in blog form.
Nothing to see here people... at least nothing we haven't seen before.
@N7 - Does he use the same pw on more than one account? I don't know why i'm asking, it's easier for people to just lie and act like they did everything right, if it generates more hype.
Also, being a software dev doesnt make you immune from malware and mistakes.
Also, being a software dev doesnt make you immune from malware and mistakes.
Ditch the CC info and buy credits from stores instead. Sure, inconvenient for impulse buys if you don't have any saved to your account, but at least then nobody can buy anything using your info.
What?! No, how do you deny that there are problems? There are problems! How many people's accounts have been hijacked? Saying "nope, there isn't a problem" doesn't make it not exist!
"it's easier for people to just lie and act like they did everything right,"
Not that Microsoft is capable of doing that either, right?
Not that Microsoft is capable of doing that either, right?
"Not that Microsoft is capable of doing that either, right?"
No one said they weren't. Point is its all useless speculation at this point.
No one said they weren't. Point is its all useless speculation at this point.
@Jim - Pretty sure that's against the law in a case like this, and would cause a nuclear meltdown in the media and court system if it came out. So no, it's not the same thing as some random shmuck who wants people to believe he did everything right and still got "hacked".
I should say I'm surprised you're playing the anti-corporate 99% card, here, but I'm honestly not.
I should say I'm surprised you're playing the anti-corporate 99% card, here, but I'm honestly not.
DasPooch: I'm not playing any card, mate. I'm just keeping an open mind about this. MS could be bullshitting (wouldn't be the first time) or all these other gamers could (not outside the realm of possibility).
You're the one acting like you're so certain of the facts. If you're privy to evidence the rest of us aren't, do tell!
You're the one acting like you're so certain of the facts. If you're privy to evidence the rest of us aren't, do tell!
@Jim - Nice how you turn it around and act like I'm claiming anything. Read my previous comments, all I've said is that in the absence of proof, the simpler and more likely scenario is probably true. Also, the dangers of being proven liars about a system-wide hack would be too much of a risk for a company like MS to take, making it even less likely.
Nowhere did I claim to KNOW anything, "mate". But please, keep playing the role of Nancy Grace for Dtoid.
Nowhere did I claim to KNOW anything, "mate". But please, keep playing the role of Nancy Grace for Dtoid.
Why is it that everyone was so quick to burn Sony at the stake, but act like MS can do no wrong?
How does it feel to be sucking the corporate MS cock?
How does it feel to be sucking the corporate MS cock?
You seem to know the passwords that 99.9% of Xbox Live users have made, though.
Are you the one fucking stealing them!?!?!?!??!?!
Are you the one fucking stealing them!?!?!?!??!?!
@Jim - Oh, give it a fucking rest, you clown. Are you honestly going to sit there and claim that most people don't use the same passwords for fucking everything? Between daily demonstrations of user stupidity across all industries and home users, there have been plenty of anonymous surveys where people admit to this shit. Hell, I guess all those people who are shown to leave their wifi router admin passwords as the default "admin" or "password" are just make-believe, right?
OOOhhh Jim. 2 months ago you were saying the same thing that MS are saying now. I forget how fickle you youngsters are, ho ho... I was phished; hacked; had my account stolen and 11000 ms points bought with my card. I can tell you that the customer services in the UK were very helpful and restored my account to me within 10 days (though they warned me 21 days) and re-imbursed the moneys to my bank a few days later. Whilst I imagine there are a few bogey cases whereby people are genuinly fucked over, I find gamers who do their talking on the internets probably the least most trustworthy source of genuine account. Or maybe I'm just lucky, or maybe I didn't act like a dick on the phone? Who knows?
"Oh, give it a fucking rest, you clown. Are you honestly going to sit there and claim that most people don't use the same passwords for fucking everything?"
I am not going to claim they do. Because I don't know.
Neither do you.
I am not going to claim they do. Because I don't know.
Neither do you.
Most hackers like a little bit of a brag and a boast and if this problem is so rampant and wide spread then you'd think there would be online evidence of people discussing how this is being carried out.
I've been solicited many times over xbla for access to my account promising all sorts of rewards and bonuses the lure of this promise is just to strong for some people ( weak people ) The whole issue: it smacks of social engineering and phising.
I've been solicited many times over xbla for access to my account promising all sorts of rewards and bonuses the lure of this promise is just to strong for some people ( weak people ) The whole issue: it smacks of social engineering and phising.
The problem is that we're asking the wrong questions. We're asking 'Is Xbox Live secure?' to which their answer, quite truthfully, is 'It's as secure as the rest of the industry, and we haven't been hacked.'
What we should be asking is 'Why doesn't Xbox Live have an equivalent of SteamGuard?' 'Why doesn't Xbox Live provide better protection from Phishing and Social Engineering attacks?' and 'Why doesn't Microsoft offer better customer service and security to those who have already been hacked?', which are far more specific and pressing questions, and far more difficult to answer.
What we should be asking is 'Why doesn't Xbox Live have an equivalent of SteamGuard?' 'Why doesn't Xbox Live provide better protection from Phishing and Social Engineering attacks?' and 'Why doesn't Microsoft offer better customer service and security to those who have already been hacked?', which are far more specific and pressing questions, and far more difficult to answer.
"I am not going to claim they do."
But you'll still write a scathing, blame-heavy blog post based on your ignorance. If you're so unsure why fan the flames?
But you'll still write a scathing, blame-heavy blog post based on your ignorance. If you're so unsure why fan the flames?
@ChaosTeaCup - Exactly. I find it hilarious that Jim (or anyone else) is willing to put a major video game console-maker on the same level of trustworthiness as the random, anonymous internet "user" who just wants to get online and bitch about what happened to them. Because lawsuits, fines, and potentially hundreds of millions in lost revenue is no big deal, and they'd never risk that to save face, right?
"But you'll still write a scathing, blame-heavy blog post based on your ignorance."
You must be new to Dtoid if you think the above article was *scathing*.
You must be new to Dtoid if you think the above article was *scathing*.
"I find it hilarious that Jim (or anyone else) is willing to put a major video game console-maker on the same level of trustworthiness as the random, anonymous internet "user" who just wants to get online and bitch about what happened to them."
You're right. I am sorry I doubted Microsoft's impeccable integrity and I forgot that no company has ever been sued for doing something dodgy because the threat is always too great.
You're right. I am sorry I doubted Microsoft's impeccable integrity and I forgot that no company has ever been sued for doing something dodgy because the threat is always too great.
yes true, MS are hardly going to turn around and say ' actually yes the service has been compromised and we dont have a fucking clue how to counter it all your accounts are at risk as is all the content you've purchased GOOD LUCK! '
@Jim: this just in, the whole xbox 360 3 red rings? All your fault. I simply cannot believe a company would push out a device earlier without fully testing it, while using cheaper solder to save a few bucks here and there. More likely than not, it was the users fault for playing the system.
"You must be new to Dtoid if you think the above article was *scathing*."
Nice try, but you're avoiding the point.
Fact is, you claim "open mindlessness," but anyone can see you view as anything but, based in your ham-fisted article. That's all I'm saying.
Nice try, but you're avoiding the point.
Fact is, you claim "open mindlessness," but anyone can see you view as anything but, based in your ham-fisted article. That's all I'm saying.
Of course MS have previous, and corporations have been shifty since their inception, but I'm just saying as a genuine victim of this scam I was dealt with promptly and helpfully, and so I just have to wonder at the integrity of the anonymous internet rant (of which, I appreciate, I am as well), especially when PS3 vs Xbox has turned gamers into some of the most horrible, disingenuous little shits on the planet). I'm a big fan of Jim's blogs, but I can't say that my experience of this issue rings true with the shitstorm Jim is hoping to Popcornulate to.
free touch: You are also right. Microsoft would be too afraid of a class action suit, or would be worried about having to replace broken systems. Its money is too important for it to not do anything suspect, even if it thinks I could get away with it. Corporations that think they can get away with doing something illegal or dubious never, ever do such things.
I would like to apologize for suggesting Microsoft might not be initially forthcoming about any problems. I forgot that it always is.
I would like to apologize for suggesting Microsoft might not be initially forthcoming about any problems. I forgot that it always is.
follow
