Despite a growing number of public reports, Microsoft has continued to deny any security problems with Xbox Live, claiming that any problems faced by Xbox 360 users aren't unique to the system. Basically, it's the "Look over there" defense.
"Microsoft can confirm that there has been no breach to the security of our Xbox Live service. The online safety of Xbox Live members remains of the utmost importance, which is why we consistently take measures to protect Xbox Live against ever-changing threats.
"... Online fraud and identity theft are industry-wide problems, and as such people using any online services should set strong passwords, not share those passwords across multiple services and refrain from sharing any personal details that could leave them vulnerable."
I really am quite alarmed at how willing Microsoft is to blame the victims, as if these are all vanilla phishing scams perpetrated against idiots. While phishing is definitely an issue, the recent stories are not coming from confused newbies who dished out their passwords to anybody. I've seen more reports of security problems on Xbox Live this past month than I have in the entirety of the PlayStation Network's existence. That doesn't seem "industry-wide" to me.
If it turns out that Microsoft really does know something that it's keeping a lid on, this is going to be a shitstorm that shall far outclass the "PSN hack" of 2011. Popcorn at the ready.