This is far from new, but I was too lazy to post it earlier (plus I figured we might have better info later on...but guess not). Don't think it has been posted here. I'll just link to a random article from Arstechnica: http://arstechnica.com/gaming/news/...ues-microsofts-response-becomes-maddening.ars More at the link. So basically, you might want to see if you can remove your credit card from XBL, and also maybe change your password too (just to be safe). Maybe update EA info too (and make sure it is different from XBL). Actually, PSN and other accounts should probably be updated too...although most PSN users have already updated their accounts (albeit maybe not by choice). I wonder if this is similar to the "attack" on PSN a little while back. IIRC, Sony detected a bunch of attempted logins (mostly unsuccessful). Wonder if similar action was taken against XBL (but maybe with more success?).
Some users who have had their account "hacked" claim to follow best practices for online security (presumably strong unique passwords for all accounts, being careful with email, checking for spyware/viruses, etc.), so I'm wondering if it might be something a bit more complicated. Though as the article points out, I wonder if some other database was hacked, and that left some XBL accounts vulnerable. Guess that would still make it hard to explain how some accounts were hacked, assuming "best practices" were followed, but maybe the hackers "guessed" what users would do to make a password unique (e.g., "XBL+password" instead of "password"). Of course, just because people say they followed best practices doesn't mean they actually did. Either way, definitely not a bad idea to update passwords and all that stuff.
Everyone who is hacked claims to follow the best practices for online security. Just like when I come across workstations filled with viruses and the employees tell me they 'never get online'.
Happened to me a few days ago. 125 bucks in microsoft points gone. 1. Microsoft does nothing about it. 2. They force you to do it through the bank. 3. Microsoft hiding something?
My account got hacked over the weekend, some ******* bought 100 dollars worth of MS Points on my card...I promptly caught it and reported the action to microsoft, they suspended my account and are investigating. I log on to my xbox that I have at work, and check my old account and it says this.... *account name* Location: United Kingdom. Last game played: Fifa 12. something big is going down and its being kept quiet.
Probably would be better if MS basically forced all users to reset their password (regardless of whether they are to "blame"...I don't think they are). But probably wouldn't be a good PR move, so that won't happen.
Can never be too careful. Just speculation on my part, but sounds like people either unknowingly gave out their password, and/or maybe some password list was leaked. In either case, doesn't matter how "unhackable" your password is. Doubt these guys are just guessing/brute forcing passwords at random.
You had $125 in MS points? Why would you do that? I only ever have enough to pay for what I'm buying at the time.
If would only be unhackable if its a jumble of random letters and numbers, with random capitalization in those letters as well. Even then, its a stretch.
My account got hacked a few weeks ago. Someone bought 10,000 microsoft points and with that they bought Red dead redemption, Halo:reach, CoD:MW2, and the portal expansion pack. Bank reimbursed me, and microsoft sent me a partial credit for the games listed. They basically said Merry Christmas and happy new year for the mistake on their part.
There was a thread about this started by Toycen a few weeks ago. I was hacked also. Has anyone been through the "investigation" process? How long did it take? Having a Windows Phone it's especially lame because everything was associated with my gamer tag. I had to make a new one (old one was frozen) and now I can't update my apps.
Shared storage devices like floppy disks and flash drives? eMailed documents without cleaning attachments?
