When traditionally talking about hacking I envision that it’s all about funny DOS screens and wire-exposed gadgetry. Apparently, that’s not how it is done when it comes to nefarious people accessing Xbox Live account information. MTV is reporting that earlier this month Halo 3 multiplayer producer Joe Tung was a victim of a different form of hacking called social engineering.
The basic idea is that a jerk picks up a phone, calls tech support, and gains access to your account by tricking the phone representative into handing out password information. It’s quick, simple, and horribly easy to do. Naturally, being a consistently popular game on Xbox Live has its repercussions, and a Bungie employee has had to deal with this problem directly. His issue has hit close to home for the majority of Halo fans, and the ramifications of the actions of these social hackers is being felt throughout their community.
What can a person do to prevent this? Almost nothing can be done other than refraining from ticking off the crazier denizens of Xbox Live. Honestly, this is my worst nightmare. I went through a spell over the course of three months where I had to get six Xbox 360s replaced. The majority of the time I would get a massive amount of questions asked to confirm my identity, but I remember that once I practically bypassed the routine because the representative didn’t feel like asking.
And what if this happens to you? You can try to call customer service, but if the hacker is sly, all of your information will be changed. That means you’ll have to socially engineer your way into your own account, or find a representative that is willing to work with your issue. Either way, this is a scary circumstance, and let’s hope Microsoft figures out a way to stop it.
| BBcode help |
| [b]Bold text[/b] |
Bold text |
| [i]Italic text[/i] |
Italic text |
| [url]http://www.dtoid.com/[/url] |
http://www.dtoid.com |
| [url=http://www.dtoid.com/]Web link[/url] |
Web link |
|
| [img]http://www.example.com/robot.jpg[/img] |
 |
Post a comment! You can also post a photo below:
Comment with Facebook
Click connect and comment instantly!
|
Comment with Dtoid
New? SIGN UP - it takes 5 seconds
|
10 comments | showing # 1 to 10
|
Comment with Facebook
Click connect and comment instantly!
|
Comment with Dtoid
New? SIGN UP - it takes 5 seconds
|
Comments policy
Destructoid is an open discussion community. You don't need to "audition" to post a comment - just speak your mind. We respect differing opinions on the site, so have at it. Be smart, funny, insightful, clueless, or cute -- but back it up with substance. Keep your cool, keep it fun. We only ask that you act respectfully and above all: don't be a troll and ruin it for everyone else. Don't bring down gamers or we'll, you know, gently shoot you in the face and stuff you into a flaming mailbox. Each comment is your opportuntity to make this community awesomer. Is that even a word?
Avoiding the banhammer only requires common sense: spamming, trolling, racism, NSFW stuff, and other forms of sucking will not be tolerated. If anyone is griefing please report abuse. Be good. Don't suck!
Contest:
3:41 PM on 08.28.2008
| 
And given the state of things in the Halo universe, would anybody protect her civil rights, or does she even have any?
I think there could be a great injustice in that situation and any ignorance toward the victims situation could result in her lack of cooperation in saving the human race.
Seriously, that coulda been som shit right there. where ya curly mustache.
You just have to ask them to investigate the phone number and recorded conversation if you have ever fallen victim to this con.
Jeez dude, wake up.
They probably aren't supposed to give it out over the phone. But the haxxor--he probably shouldn't even be called that--SCAMMER will tell the CSR he lost his password, and that he doesn't have email or can't access it or whatever. Combine that with total apathy on the part of the CSR, and I imagine this scam will be all too easy, IF the scammer gets the right CSR.
Memo to Microsoft: If you let someone fiddle with *my* account, I'm suing.