hot  /  reviews  /  videos  /  cblogs  /  qposts

Xbox Live hacking is a very real problem

12:30 PM on 01.13.2012 // Jim Sterling

Microsoft says that recent thefts targeting Xbox Live users are isolated incidents, and often tries to portrays the problems as phishing scams -- effectively blaming the consumer. However, an eyebrow-raising amount of comments and emails seem to suggest that it's a big more common than that. 

A few days ago, I spoke with Susan Taylor, the hacking victim who famously exposed Microsoft's awful customer service. She let me know that of the two hundred emails she's received since resolving her own situation, one hundred and forty were from customers who have had similar experiences. Other emails came from those who have used black market sites -- places that sell accounts loaded with games bought using stolen Microsoft Points. 

"Quite a few people have also questioned the third party servers and services, but I am not seeing a trend in the stories I have read," Susan told me. "Some people have EA accounts connected to their XBL accounts, some people don't; some people have PayPal linked, others just their cards; most have never played FIFA 12.

"I personally have Uplay and Raptr accounts linked to my Xbox account. Unless people are outright lying to me, there is definitely not a specific service (aside from XBL itself) that absolutely everyone who has had accounts compromised has in common. Microsoft's arguments are looking very weak at best."

Microsoft has indeed tried to blame a variety of third-party services. One of my contacts said that a customer service rep blamed third-party servers, while FIFA 12 has been accused of allowing exploits to take place. The one unifying strand in all these stories is Xbox Live, however. 

A security flaw on has allegedly been discovered by one victim, who learned that indefinite password attempts allows a hacker to force his way into any Gamertag they like, just by learning the corresponding email address (which Microsoft itself makes easy) and assaulting the site with a password generator. Whether this is how the hackers are getting in remains to be seen, but it's the most credible idea so far, and it once again points to Microsoft. 

For right now, the only advice one can give to those users wishing to protect themselves is this -- do not have a credit card attached to your Xbox Live Gamertag. You can renew your subscription or add Microsoft Points using pre-paid cards bought in stores, without the need to open a conduit to your bank account on Microsoft servers. It seems to be the best way to keep yourself safe.

From what we've seen, this is a very real problem, but there are practical steps you can take to defend yourself. You're going to have to, because it seems Microsoft doesn't have what it takes to look after its own customers.

Jim Sterling, Former Reviews Editor
 Follow Blog + disclosure JimSterling Tips
Destructoid reviews editor, responsible for running and maintaining the cutting edge videogame critique that people ignore because all they want to see are the scores at the end. Also a regular f... more   |   staff directory

 Setup email comments

Unsavory comments? Please report harassment, spam, and hate speech to our community fisters, and flag the user (we will ban users dishing bad karma). Can't see comments? Apps like Avast or browser extensions can cause it. You can fix it by adding * to your whitelists.

Status updates from C-bloggers

RadicalYoseph avatarRadicalYoseph
The issue with Mike's article isn't that he doesn't like SMB. His tone makes it feel like his opinion is presented as fact, and the article goes way off track from the title.
SeymourDuncan17 avatarSeymourDuncan17
The last bit made me laugh for some reason. [img][/img]
El Dango avatarEl Dango
My silly joke comment on Mike's article looks really mean next to all the bitter ones. Why are people so accepting of my unpopular opinions, but not his?
SeymourDuncan17 avatarSeymourDuncan17
I'm still watching this over and over. Dude is tremendously talented, to say the least. Just wait until the solo and breakdown. [youtube][/youtube]
TheAngriestCarp avatarTheAngriestCarp
Nice. Destructoid articles no longer scroll on my tablet or phone. Who should I email about this?
LinkSlayer64 avatarLinkSlayer64
Anybody like Rhythm games? I found a really cool one on, I likes it, I likes it a lot! Although you gotta use Firefox due to lag caused by chrome unfortunately.
CJ Andriessen avatarCJ Andriessen
Finding name brand candy in Chibi-Robo Zip Lash brings an unexpected joy that reminds me of finding Duracell batteries and other real products in the first Pikmin.
techsupport avatartechsupport
Super Meat Boy must be one of the most difficult platinum trophies to exist for Playstation. Beat every dark world section without dying? Ha, okay.
Pixie The Fairy avatarPixie The Fairy
Attention Craigslist users: No one wants your ps2 sports games no matter how much you repost them/drop the price, unless it's NBA Street, Def Jam Vendetta or SSX3. The rest are better used as drink coasters.
Dr Mel avatarDr Mel
If you imagine this song as Kojima speaking these as parting words to his creation of Metal Gear, it's actually pretty heat breaking...
Terry 309 avatarTerry 309
It's my Birthday 22 today, Bleh!
Virtua Kazama avatarVirtua Kazama
One thing I've learned about the Japanese fighting game players: They are willing to play any fighter no matter how good or bad it is, and they don't shit on the game or the community behind it.
RadicalYoseph avatarRadicalYoseph
I killed Darth Vader by crashing a spaceship into him 10/10
Parismio avatarParismio
Watched the first ep of One Punch Man and I was not disappointed. It seems like they'll be adding their own stories into it because I don't remember that fight in the last 5 minutes in the manga. I'll have to reread it to make sure.
Paul S avatarPaul S
What the hell is Sega using in the printing of their PS3 game manuals? I wouldn't be surprised if some dumb kid stuck one in a plastic bag and started huffing the fumes to get high.
CeeDotGreen avatarCeeDotGreen
Been playing MGO obsessively, still can't find anyone in their right mind that uses the Hush Puppy. So of course I'm gonna be the dumb bastard that tries.
TheAngriestCarp avatarTheAngriestCarp
Why don't we have more games that use filtered 3D models to creat faux-pixel art? It's such a cool, smooth style, but you never see any games using it.
OverlordZetta avatarOverlordZetta
Oh lawd. Next Saturday, Gamestop will have three hour access to Tri-Force Heroes. Nintendo, really wish we could just get normal demos from you more often, please!
MeanderBot avatarMeanderBot
I made this. Want one? [IMG]HTTPS://[/IMG]
JawshButturBawls avatarJawshButturBawls
Star Wars Battlefront is pretty good. Except the beta is basically a demo with nothing in it so that upsets me. but it's still pretty good.
more quickposts



Invert site colors

  Dark Theme
  Light Theme

Destructoid means family.
Living the dream, since 2006

Pssst. konami code + enter

modernmethod logo

Back to Top

We follow moms on   Facebook  and   Twitter
  Light Theme      Dark Theme
Pssst. Konami Code + Enter!
You may remix stuff our site under creative commons w/@
- Destructoid means family. Living the dream, since 2006 -