Quantcast
Xbox Live hacking is a very real problem - Destructoid

DestructoidJapanatorTomopopFlixist



Xbox Live hacking is a very real problem


12:30 PM on 01.13.2012
Xbox Live hacking is a very real problem photo



Microsoft says that recent thefts targeting Xbox Live users are isolated incidents, and often tries to portrays the problems as phishing scams -- effectively blaming the consumer. However, an eyebrow-raising amount of comments and emails seem to suggest that it's a big more common than that. 

A few days ago, I spoke with Susan Taylor, the hacking victim who famously exposed Microsoft's awful customer service. She let me know that of the two hundred emails she's received since resolving her own situation, one hundred and forty were from customers who have had similar experiences. Other emails came from those who have used black market sites -- places that sell accounts loaded with games bought using stolen Microsoft Points. 

"Quite a few people have also questioned the third party servers and services, but I am not seeing a trend in the stories I have read," Susan told me. "Some people have EA accounts connected to their XBL accounts, some people don't; some people have PayPal linked, others just their cards; most have never played FIFA 12.

"I personally have Uplay and Raptr accounts linked to my Xbox account. Unless people are outright lying to me, there is definitely not a specific service (aside from XBL itself) that absolutely everyone who has had accounts compromised has in common. Microsoft's arguments are looking very weak at best."

Microsoft has indeed tried to blame a variety of third-party services. One of my contacts said that a customer service rep blamed third-party servers, while FIFA 12 has been accused of allowing exploits to take place. The one unifying strand in all these stories is Xbox Live, however. 

A security flaw on Xbox.com has allegedly been discovered by one victim, who learned that indefinite password attempts allows a hacker to force his way into any Gamertag they like, just by learning the corresponding email address (which Microsoft itself makes easy) and assaulting the site with a password generator. Whether this is how the hackers are getting in remains to be seen, but it's the most credible idea so far, and it once again points to Microsoft. 

For right now, the only advice one can give to those users wishing to protect themselves is this -- do not have a credit card attached to your Xbox Live Gamertag. You can renew your subscription or add Microsoft Points using pre-paid cards bought in stores, without the need to open a conduit to your bank account on Microsoft servers. It seems to be the best way to keep yourself safe.

From what we've seen, this is a very real problem, but there are practical steps you can take to defend yourself. You're going to have to, because it seems Microsoft doesn't have what it takes to look after its own customers.






Comments not appearing? Anti-virus apps like Avast or some browser extensions can cause this.
Easy fix: Add   [*].disqus.com   to your software's white list. Tada! Happy comments time again.

Did you know? You can now get daily or weekly email notifications when humans reply to your comments.







Win your choice of console from Destructoid! in Destructoid's Hangs on LockerDome

Hacking

3:00 PM on 06.30.2014
The Art of Watch Dogs nails the modern cyberpunk aesthetic

For all the controversy over its graphical quality, Ubisoft's Watch Dogs had a compelling open-world version of Chicago to explore. As Chris Carter pointed out in his review, the visuals rarely meet the quality set by GTA V b...more



4:15 PM on 05.14.2014
DayZ developer's servers hacked, source code possibly stolen

Rely on Horror spotted a thread on game hacking forum Unknown Cheats which suggests user DevDomo gained access to developer Bohemia's servers. DevDomo's proof came in the form of some images which are alleged source code file...more



11:00 AM on 04.23.2014
Seven things I loved about playing Watch Dogs

The delay of Ubisoft Montreal's new open world IP, Watch Dogs, surprised many. With only a month away from launch, and a rather bold marketing push for the holiday season, Ubisoft appeared ready, but then we found it wasn't. ...more



View all Hacking






Back to Top




All content is yours to recycle through our Creative Commons License permitting non-commercial sharing requiring attribution. Our communities are obsessed with videoGames, movies, anime, and toys.

Living the dream since March 16, 2006

Advertising on destructoid is available: Please contact them to learn more