"Xbox Live hacking is a very real problem"

**Metfanant** · 01-21-2012

Remember...negativity towards the 360...or Halo is not allowed on this forum...

Even hinting at it is a worthy of a ban...

Sent from my DROIDX using Tapatalk

**radgamer420** · 01-21-2012

Originally Posted by Metfanant

Remember...negativity towards the 360...or Halo is not allowed on this forum...Even hinting at it is a worthy of a ban...Sent from my DROIDX using Tapatalk

Oh yeah, thats right. My bad. lol

**Metfanant** · 01-21-2012

Originally Posted by radgamer420

Oh yeah, thats right. My bad. lol

That's alright...its easy to forget sometimes...I mean this is xbu.com right?

Sent from my DROIDX using Tapatalk

**Ghost-Rhayne** · 01-21-2012

Maybe XBL hasn't been breached like the PSN server was, but there is an aggressive hacking campaign against it that is seemingly being downplayed by some here and denied by MS.

**F34R** · 01-21-2012

I'm not downplaying anything.... if XBL was actually hacked, then good, let's bash Msoft for it. However, what's going on is Live ID's and game exploits. One part is Msofts responsibility and they've seemingly done what they can to try and minimize this from continuing by changing the way people could continuously brute force passwords for Live ID's. There's absolutely NOTHING Microsoft can do if you use the same email and pass word for Live as you do other services, and your info was obtained via those other sources.

**Sub-stance1** · 01-21-2012

There seems to be no evidence of a service hack so far. For now, I will take their word unless there is some convincing evidence that says otherwise.

**Yungstar 2006** · 01-21-2012

Originally Posted by Ghost-Rhayne

Maybe XBL hasn't been breached like the PSN server was, but there is an aggressive hacking campaign against it that is seemingly being downplayed by some here and denied by MS.

when have MS downplayed this supposed "aggressive hacking campaign"?

**claud3** · 01-21-2012

Hacking, stealing, ruining, trafficking, believing and hoping are all what these people do

they hack because they can

they steal because its easy and nothing new

they are trafficking data that is weak to begin with and as no new data attached to it

they are believing in their own false beliefs in the fact what they are doing is new, amazing, wonderful. The best hack since the wright brothers learned to fly, come on really

they are hoping we all pay attention and cry for are mummies when it happens and seek a new way to not have it happen again

Look i know its a fact and its a pain, but and this is a good but. but its still nothing of solid stone in believing its anything other than a hacking bunch of asswholes with no life and no girlfriend...

Really this is the best way to get the attention of us smart gamers Wise up and try a fresh hack worth while for are attention. None of this childish hacking

**F34R** · 01-21-2012

Who are they, and wth are you talking about claude lol? You completely lost me there.

**War** · 01-22-2012

Originally Posted by F34R

I'm not downplaying anything.... if XBL was actually hacked, then good, let's bash Msoft for it. However, what's going on is Live ID's and game exploits. One part is Msofts responsibility and they've seemingly done what they can to try and minimize this from continuing by changing the way people could continuously brute force passwords for Live ID's. There's absolutely NOTHING Microsoft can do if you use the same email and pass word for Live as you do other services, and your info was obtained via those other sources.

except that all those articles are saying that your pass was NOT obtained from other sites. This is what others mean when you are downplaying. You try to start off objectively, but then you randomly throw in a MS defending statement as if were a fact. I have a feeling that you are doing this purposely to tick people off, but i will just state this again.

All these sites are blaming MS because they believe that it isn't some phising from other sources as MS claims. These are based upon tons of reports that these gaming sites have been getting. And even if this is done by brute forcing hacking, there are methods that could be taken to prevent it. However, MS is just downplaying and blaming others. However, we do know that MS's excuses dont make sense because of the articles posted in this thread.

**F34R** · 01-22-2012

Well of course they are going to try and blame Msoft for their passes getting exploited. How many people are going to get any help at all from Microsoft if they go in saying, "I use the same user name and pass as my Live stuff, and my other accounts have been compromised; but this is all your fault still, gimme back my money..."

Cmon...

All these sites? The few links that are in here are all about the same woman, and another isolated incident lol. Let's take the info given in these links... you say TONS of reports, where does it say that? The link in the OP says, "140 emails", and the rest were people that were using "black market" sites. Then you have the desctuctiod article, which is just a rehash of the OP article. Then there's the lone report from Gamejudgment.

Yeah, TONS.

**War** · 01-22-2012

Originally Posted by F34R

Well of course they are going to try and blame Msoft for their passes getting exploited. How many people are going to get any help at all from Microsoft if they go in saying, "I use the same user name and pass as my Live stuff, and my other accounts have been compromised; but this is all your fault still, gimme back my money..."

Cmon...

All these sites? The few links that are in here are all about the same woman, and another isolated incident lol. Let's take the info given in these links... you say TONS of reports, where does it say that? The link in the OP says, "140 emails", and the rest were people that were using "black market" sites. Then you have the desctuctiod article, which is just a rehash of the OP article. Then there's the lone report from Gamejudgment.

Yeah, TONS.

This is what others and I mean by defensive. I have posted other articles and you are well aware that most of them are from different sources of reports and such. An ex hacker even came out and said that whether this is brute hacking or security breach, fault lies in MS for making it easy. Also, saying all this sudden increase in hacking and reports mean nothing is simply ridiculous. I think I already know which position you would take when it comes MS. I think it would be best if our discussion ends here if you really think all those reports are meaningless and lies.

**F34R** · 01-22-2012

I didn't say they were meaningless. I said that there aren't TONS of reports, which you hinted at there being. I've checked all the links in this thread, and I don't get where there are TONS of reports, or anything resembling the frequency that this is happening on a scale that you suggest.

I'm not exactly sure what you're going to label me with whatever notion that you have pertaining to which position I'd take when it comes to Microsoft. You apparently don't follow my posts that often, being new here perhaps has something to do with that. There are a number of things I don't like about Microsoft and have been quite vocal about them when those topics are being discussed. As a matter of fact, I own systems from all the players and there are things about all of them that I don't like. So don't sit here, less than a month on these forums, and pretend to know what my position is going to be based on a company name.

In this case, I just don't see any evidence that this is a widespread issue based on the links that people have posted. There are how many subscribers to live? How many reports [tons] have we read about regarding this issue?

**claud3** · 01-22-2012

sorry F34R

i see things completely different to everyone else on this topic... I am sorry i lost you in this thread and others, but i will explain it in simple terms

the hacking that is going on will always happen no matter what people cry out about it... Its a fact of life when it comes to PSN and XBOX LIVE and their respective online sites that we are connected to via are consoles, hacking is a massive problem. But i see it as not a massive problem because its a common thing to happen

**F34R** · 01-22-2012

Oh ok, I get what you're saying.

**claud3** · 01-23-2012

well be it as it may

hacking is a massive issue and it needs fixed, i know i go on about it being a common thing, its still a nasty thing to do to millions of people. And i hope one day it never happens, but then again that is a fruitless wish

**PsychoMantis** · 01-31-2012

if you have common sense and are careful you can avoid this happening to you. The people who give out the info that is asked in an email or over XBL deserve to get ripped off. If somebody asks for your email address for something on XBL it isn't hard to say no and/or delete the email from the get go. I have had a few people ask me for my info such as email and even password for stupid stuff like GS boosting and I just laugh and ignore it.

**PsychoMantis** · 01-31-2012

Originally Posted by Ghost-Rhayne

Maybe XBL hasn't been breached like the PSN server was, but there is an aggressive hacking campaign against it that is seemingly being downplayed by some here and denied by MS.

Not in the way that Sony denied everything and gave out info peice by piece when it got too hot in the kitchen for them. Sony did a horrible job of handling the situation they were to busy trying to protect their image than their millions of consumers. Im sure MS would be the same way but if MS was smart they would up their defense after seeing what happened to Sony.

**claud3** · 02-01-2012

common sense does not work when it comes to hacking, you could have all the common sense in the world and still get hacked.

Just like living. you have common sense when it comes to situation in your life, that does not mean they won't happen

**PsychoMantis** · 02-01-2012

Originally Posted by claud3

common sense does not work when it comes to hacking, you could have all the common sense in the world and still get hacked.

Just like living. you have common sense when it comes to situation in your life, that does not mean they won't happen

If your dull minded enough to give out your info to somebody you don't know then you deserve it. A person with common sense wouldn't do that, but hey they are the victim right?

**War** · 02-26-2012

http://www.thesixthaxis.com/2012/02/...-being-hacked/

Xbox Live has a significant problem with its security. It’s not something that is easily provable, and Microsoft is still in denial over the issue, but there is clearly a problem. Pretending there isn’t won’t make it go away.

This is nothing new, of course. Xbox Live has had some sort of issue with accounts being compromised for some time. My own Xbox Live account was breached last summer. I went through the lengthy process of having it restored. Microsoft’s customer services department, who were incredibly pleasant to deal with (on the phone, emails were less helpful), talked me through the reporting process and ended the call by telling me that it all looked fairly clear-cut but needed to be referred to another team and would take 30 days before I had my account back.

The customer services representative I spoke to during this case offered me an extremely cheap renewal on my Xbox Live Gold subscription by way of an apology for the inconvenience. I gave him my card details over the phone and thanked him.

Lightning strikes twice?I was told that there were no purchases showing on my account so I should be reassured that there was no problem with fraud. I’d never entered my credit card details on Xbox Live (I was especially careful after the springtime issues with PSN security) so I wasn’t too concerned. However, when I got access back, the Microsoft Points that had been in my account (somewhere over 1800) had gone. I had no proof and even less desire to spend more time on the phone arguing the case so I wrote off the loss and decided to just move on.
When I finally got access to my Gamertag back, it wasn’t linked to my existing Windows Live ID, it was linked to an account generated by the investigations team. It took me another 60 days and the creation of a spare Windows Live ID to switch my accounts around (you can only switch once every 30 days) so that my Gamertag was linked to the original Windows Live ID once again. I’ll admit that I found this stage of the process incredibly confusing. I’m not sure I was doing it correctly and the email support was almost completely useless.

Around this time, I also saw reports of others who had their accounts compromised and I first saw mention of it being, in some way, related to FIFA Ultimate Team. This was interesting as the game which showed on my newly returned Gamertag as being the last one I played was FIFA 11 — a game I’ve never owned on Xbox 360.

Obviously, following all of that trouble and Microsoft’s continuing insistence that their customer’s security woes were the result of them foolishly supplying nefarious individuals with their passwords, I made sure my new password was only used for that account. I never wrote it down and I picked something that should be difficult to guess or force. My Xbox Live account had a completely unique password.

This past Thursday, I got a couple of emails that said I’d bought 6000 Microsoft Points and a digital copy of Alice: Madness Returns via Xbox Live. I was annoyed that I would apparently have to go through the laborious reclamation process but not too worried, as I’d never stored my credit card details so it couldn’t be my money they were spending.

Today, I managed to get a few minutes to log into my account online and check. The password no longer worked, so I reset that immediately. The reset link emailed to my own email address and another that I didn’t recognise but I was quick to verify the email and get my password changed. When I logged in, there were no other email addresses linked to my account but my credit card was, somehow, stored there. I can only guess that giving my card details to the customer services representative for my cheap Gold renewal the last time my account was breached means that they stored them. Ironic that this actually means I’ve now lost money.

My purchase history shows purchases of 45 tracks and track packs, I assume for some music rhythm or dancing game that I’ve never played. It also shows the Alice: Madness Returns purchase (at £29.99) and Plants Vs Zombies from the Xbox Live Arcade. I had more than 3000 Microsoft Points on my account last time I checked. Now I have 30.

I can’t know how access was gained to my account but I am sure that my password was never in a position where it could have been seen by a third party, at least on my side. This is not a phishing problem, as Microsoft has repeatedly asserted. There is a bigger issue here, I’m not sure what it is but, worryingly, it doesn’t seem like Microsoft have any idea either. And denying it is a problem isn’t solving anything.

I believe that there’s enough anecdotal evidence around forums and message boards to warrant a full scale investigation by Microsoft. If needs be, I think they should take down the whole service to investigate and test until they’re as sure as anyone can ever be that there are no security holes. The alternative is to continue to deny an issue that is leaving many of their paying customers victims of theft and with the not-inconsiderable inconvenience of reclaiming stolen Live IDs and Gamertags.

I need to phone customer services tomorrow when I have a chance to talk to them and I have no doubt that I’ll get my card details removed from the account and all funds returned, although I worry that my missing Microsoft Points will never be refunded. Perhaps that’s unfair but that kind of virtual currency always feels like it’s disposable.

The bigger issue I have is that I no longer have any faith in my account remaining secure — so I’ll be reluctant to use the service in the future. Surely that’s a big enough issue, given the number of accounts we hear being breached, to warrant some wider investigation? We’ll see.

" I made sure my new password was only used for that account. I never wrote it down and I picked something that should be difficult to guess or force."

Again, nothing new. There are tons of other people claiming the same. How they didnt use same pass and etc. Havent been keeping up with the news, but it seems like XBL hacking is still an issue. At this point, it becomes really hard to sweep it under the rug and blame it on users when you have so many cases like these.

**Sub-stance1** · 02-27-2012

Originally Posted by War

http://www.thesixthaxis.com/2012/02/...-being-hacked/

" I made sure my new password was only used for that account. I never wrote it down and I picked something that should be difficult to guess or force."

Again, nothing new. There are tons of other people claiming the same. How they didnt use same pass and etc. Havent been keeping up with the news, but it seems like XBL hacking is still an issue. At this point, it becomes really hard to sweep it under the rug and blame it on users when you have so many cases like these.

MS never swept this under the rug. They have addressed it and they are taking it seriously. So far its still no evidence of a xbox live security breach.

I can assure you we are listening and continue to take aggressive steps to help protect you against ever-changing threats. We also care deeply about how this ongoing issue affects your experience with Xbox LIVE and your trust in us.Security is an ongoing battle. No matter how well we work to improve security - and we are working every day to bring new forms of protection to Xbox LIVE - our work will never end. With every measure we put in place, ill-intentioned people will create new ways to attack online services.
That's why I believe it's more important than ever that our members are armed with information and security tools to actively partner with us in this war on fraud. We have a dedicated web page athttp://xbox.com/security detailing all the steps you can take today to help protect your account.

On the site, Microsoft says most thieves manage to steal accounts by guessing users' passwords via social engineering, find passwords from breaches on other services, use malware that captures passwords or tricks users to giving up info via phishing.
If you want to take an extra step to protect your Xbox Live account, consider changing selecting a unique password with gibberish numbers and letters that no one could possibly guess.

http://consumerist.com/2012/02/micro...seriously.html

**War** · 02-27-2012

Originally Posted by Sub-stance1

MS never swept this under the rug. They have addressed it and they are taking it seriously. So far its still no evidence of a xbox live security breach.

http://consumerist.com/2012/02/micro...seriously.html

On the site, Microsoft says most thieves manage to steal accounts by guessing users' passwords via social engineering, find passwords from breaches on other services, use malware that captures passwords or tricks users to giving up info via phishing.
If you want to take an extra step to protect your Xbox Live account, consider changing selecting a unique password with gibberish numbers and letters that no one could possibly guess.

Sounds very much like blaming others to me. In fact, they ARE blaming others and users when in fact all the reports like this one are telling us that isnt the case.

**Sub-stance1** · 02-27-2012

Originally Posted by War

Sounds very much like blaming others to me. In fact, they ARE blaming others and users when in fact all the reports like this one are telling us that isnt the case.

It's not their fault that passwords got hacked. Xbox live is still up and running on a daily basis and their is no evidence of a security threat. Tough shit if they got their password stolen. People just need to be a little smarter with their information.