Xbox Live Hacked?

 Pages 1 2 3 NEXT
 

I had a lovely wake up call this morning. I was actually feeling pretty good for a change, had a coffee in my hand, was patching the MMO I've been playing, then I checked my email.

$129 for Microsoft Gold Year Pack
$99 for Microsoft Points
$99 for Microsoft Points
You Gift of XBOX Live Time has been accepted
You Gift of Microsoft Points has been accepted
You Gift of Microsoft Points has been accepted
You Gift of Microsoft Points has been accepted
<repeatxTon>

Lots of swearing at this point. I log onto my Windows Live account (with it's secure 12 character password) and my Netbank, I find my credit card is maxed, actually overdrawn, (thankfully I hadn't made Octobers payment yet...) and my Live account is all screwed up.

I get my Live account back under control.

At this point I do a google, not much on major news in the last day or so about XBOX, but a few early articles about people in the same position as me.

Wonderful. Didn't Microsoft learn a thing when this crap happened to Sony?

Email to Microsoft sent demanding a full refund, none of this "credit" bullcrap, my account to be downgraded to silver, and my credit card info purged from their system.

No reply yet. Their service centre isn't open yet.

So I ring my bank, and get a very helpful operator who says because the transactions haven't been finalised yet they can't dispute them, but they will as soon as they are, she said that if Microsoft pull its thumb out I'll get my cash back right quick, if not I'll have to wait a little while. Which is -wonderful- around the 1st of the month when my bills are due... which funnily enough can't be paid with Microsoft points. Still not her fault, and she was very helpful.

Now it's a matter of waiting to hear from Microsoft. Most annoying thing is that because of their stupid "you must ring us to downgrade from gold to silver" and "you can't remove your credit card without putting another one in" crap I hadn't cancelled the service months ago, since I haven't used it since my eyes went bad. Seriously there should be a law saying that if you can sign up for something using an automated online system you can cancel the same damn way.

Anyone else get screwed over this morning?

Im a ps3 user so idk the state of xbl, but im sorry to say the first thing that springs to mind is that this is very ironic and will probably wipe the smile off a few xbox lovers i know.
But remember what happened when the psn was hacked, unless its a noticeable problem, which it sounds like it is, then you might not hear from microsoft for ages if ever.
On the otherhand, it does sound too targeted and widespread to be just a system glitch, unless the whole system is playing around?

Well I'm assuming that these people gifted themselves? If that's the case you're working with some genius hackers...

tkioz:
You Gift of XBOX Live Time has been accepted
You Gift of Microsoft Points has been accepted
You Gift of Microsoft Points has been accepted
You Gift of Microsoft Points has been accepted

If that isn't the case and I misread then its more likely to be a glitch...Now that I think about it it has to be a server glitch or something. What is the point of hacking and using the credit card when nothing will come of it...Oh wait. This is the internet and I'm just remembering LulzSec >_>

EDIT: I'm a Gold Member and I haven't had any notifications or credit card usage.

EDIT EDIT: Also, a password is a great deterrent but with enough persistence a 12 character password with symbols, uppercase/lowercase and numbers can be broken.

I've had this problem recently too... Was playing for a bit, signed out, then my friend texted about 10 mins laster asking me why I was playing FIFA game (which I never play. Tried to sign back in and I couldn't.

I'm very secure with my password, never use any dodgy websites etc. no idea how it happened... the b*****ds took £90.50 off me

However my expirence with Microsoft was different. I phoned them asap, from there they took over my account and suspended the guy who hacked it. It took a month to get things sorted but I'm back online now plus money is being refunded soon and they gave me some free xbox live gold account for the trouble

I have now taken any bank details of xbox live and will be purchasing points from game shops

This FIFA hacking problem has been going since about June, they buy stuff to sell on ebay apparantly so be on the look out

Rem45:
Well I'm assuming that these people gifted themselves? If that's the case you're working with some genius hackers...

tkioz:
You Gift of XBOX Live Time has been accepted
You Gift of Microsoft Points has been accepted
You Gift of Microsoft Points has been accepted
You Gift of Microsoft Points has been accepted

If that isn't the case and I misread then its more likely to be a glitch...Now that I think about it it has to be a server glitch or something. What is the point of hacking and using the credit card when nothing will come of it...Oh wait. This is the internet and I'm just remembering LulzSec >_>

EDIT: I'm a Gold Member and I haven't had any notifications or credit card usage.

I've seen people on other forums mentioning that there have been a few websites popping up selling Microsoft points on the cheap. $11 for 6000 points.

So... they got $22 from me at least.

It's just like gold selling in game, so what if the buyers get banned, the hackers who got into the account get the cash.

Havent had any problems my end but this is slighty different as people are going to get hacked whatever your using.The problem with the psn was it effected so many people then they shut down the psn without telling anybody why and that they could be at risk.

The charges were made to your account, it wasn't a case of xbox live being hacked, but a case of your account being compromised. Most compromised xbox accounts are compromised because you use the same email/password combo at other websites or other companies who have been compromised (like sony) and your account info was stolen from them. Try calling their support and getting an investigation started on your account for the charges.

Hmm, well, this hasn't happened to me, so... that's good!
Although, I do only have Silver Membership, if that has anything to do with it.

Still, sorry to hear about this. Hopefully you'll get everything cleared up soon.

I would probably call XBL support and your bank ASAP.

barbzilla:
The charges were made to your account, it wasn't a case of xbox live being hacked, but a case of your account being compromised. Most compromised xbox accounts are compromised because you use the same email/password combo at other websites or other companies who have been compromised (like sony) and your account info was stolen from them. Try calling their support and getting an investigation started on your account for the charges.

Well I've considered that, but I haven't used my Windows Live or XBOX Live accounts for months, I haven't even turned my xbox on for months, my eyes have gone and I can't see the TV to play it so what's the point.

So it wasn't malware.

All my passwords are randomly generated 12 characters long, and never used on more then one site, so that's out.

My email account that is used for accounts is an ISP account that's locked to my IP (slight pain but worth it for security), so they couldn't have got it that way.

So yeah I'm confident in blaming Microsoft for this.

I am sad for you that you got hacked but there is something you seem unaware of given how you view the Sony situation(they could have helped it though). Nothing you ever do no password is too complex to stop people hacking your account and if people really wanted to and had the time they could rape XBL and make look what happened to Sony like a playful happy slap. Nothing you ever do will stop someone determined enough.

Even those locks on your door are just a deterrent if someone wants to rob you house they can are going to rob your house locks or not just having better locks means they are more likely to rob another's house as it will require less effort. Same goes for anything online like this.

This is not MS's fault(probably) this is life.

I downgraded to silver after one of my friends got hacked a few months ago. Microsoft are pretty random at dealing with the problem. I've heard people say that it was all sorted in a few days and my mate is still waiting months after the event. It shows some pretty poor response on one of the richest companies going...bastards!

Just what everyone expects of them i guess

And that, my friend, is why I dont trust these companies with my credit card details. I always buy things with paysafecards and the likes when I can.

Glademaster:
I am sad for you that you got hacked but there is something you seem unaware of given how you view the Sony situation(they could have helped it though). Nothing you ever do no password is too complex to stop people hacking your account and if people really wanted to and had the time they could rape XBL and make look what happened to Sony like a playful happy slap. Nothing you ever do will stop someone determined enough.

Even those locks on your door are just a deterrent if someone wants to rob you house they can are going to rob your house locks or not just having better locks means they are more likely to rob another's house as it will require less effort. Same goes for anything online like this.

This is not MS's fault(probably) this is life.

I have a sword for people who get past the locks... ;o)

CannibalCorpses:

Glademaster:
I am sad for you that you got hacked but there is something you seem unaware of given how you view the Sony situation(they could have helped it though). Nothing you ever do no password is too complex to stop people hacking your account and if people really wanted to and had the time they could rape XBL and make look what happened to Sony like a playful happy slap. Nothing you ever do will stop someone determined enough.

Even those locks on your door are just a deterrent if someone wants to rob you house they can are going to rob your house locks or not just having better locks means they are more likely to rob another's house as it will require less effort. Same goes for anything online like this.

This is not MS's fault(probably) this is life.

I have a sword for people who get past the locks... ;o)

Sword? I have a god-damn shotgun loaded with saltpeter in one barrel (the left) and buckshot in the other incase they don't get the hint the first time.

Rem45:

EDIT EDIT: Also, a password is a great deterrent but with enough persistence a 12 character password with symbols, uppercase/lowercase and numbers can be broken.

I believe this is relevant to this. Sorry about your problems dude. Don't use XBL or PSN, and am too young to have a credit card, so...

tkioz:

barbzilla:
The charges were made to your account, it wasn't a case of xbox live being hacked, but a case of your account being compromised. Most compromised xbox accounts are compromised because you use the same email/password combo at other websites or other companies who have been compromised (like sony) and your account info was stolen from them. Try calling their support and getting an investigation started on your account for the charges.

Well I've considered that, but I haven't used my Windows Live or XBOX Live accounts for months, I haven't even turned my xbox on for months, my eyes have gone and I can't see the TV to play it so what's the point.

So it wasn't malware.

All my passwords are randomly generated 12 characters long, and never used on more then one site, so that's out.

My email account that is used for accounts is an ISP account that's locked to my IP (slight pain but worth it for security), so they couldn't have got it that way.

So yeah I'm confident in blaming Microsoft for this.

If you use that email address as a log in or email address for other websites/games/ect then you have taken your first steps. If you use the same password then you have completed the path to insecurity. All it takes is for that website to get hacked and your info get stolen from them for the hacker to know what to try when trying to access your xbox live account. I work with account security and I see it all the time.

had that problem recently actually. Someone hacked my account and made over $150 in charges. Changed the password and all that jazz. Called Xbox live support, said theyd launch an investigation and temporarily lock the account so no one could make any charges, said it usually takes about a week, maybe 2 in some cases. About a week goes by, no word from Xbox, and someone made yet another charge from my account despite it supposedly being "locked". Gave them another call, told them about it, they said theyd handle it.

Well, a little over a month goes by, still no word and I'm getting a bit impatient. Decide to try something for myself. Go onto the windows Live site, request new password sent to the email I opened the account with (first thing I did when my account was compromised was change ALL the passwords for my important emails), manually reset it, got back onto my xbox, went to system settings and recovered my account, chose a new password and all that jazz. Went to my bank, showed them which charges were fraudulent, they closed that card, ordered me a new one (only took 5 days to come in the mail) and had the funds back in my account the next day. Funny thing is, since the bank refunded my money without a fuss, all the money that guy spent on my account towards miscellaneous charges (a few games and a few thousand microsoft points) are basically mine for free now. Not only that but all the guy really did, besides buy a bunch of shit, was play a bunch of online games and add a bunch of friends and change my avatar. All in all it ended up increasing my Xbox profile stats, all I had to do was delete the people I didn't know and change my avatar back. So all in all, not a bad outcome. Xbox live support is more or less useless though, it seems

Same thing happened to me about a month ago. Took about two weeks to get my money back. Just make sure that they shut down your account until they have it figured out. After the first time I called them, they didn't shut my account down and the hijacker bought more points. Called them again and chewed them out, and things started moving. Took about a month to get my account back though. My advice to you is to stay on top of them and they will get things moving.

Use the same password for everything? If so... yeeeeah bad idea.

That's why I refuse to use a credit card for Gold, I find it much easier just to pay the extra $5-10 for an antire year on a prepaid card than to risk credit card information being stolen.

Sparcrypt:
Use the same password for everything? If so... yeeeeah bad idea.

See the part of my post where every password is different and 12 characters long, oh and I've got one email address that is ONLY ever used for setting up accounts with TRUSTED companies and never published anywhere. Hell I didn't even use that email address to set up my Escapist account, it's only used for stuff that involves money.

So I have ZERO clue how they got into my account, and I'm frankly REALLY pissed off about it. Microsoft say they are investigating, and my bank needs to wait a few days before doing the charge back, in the mean time the points are being sold on a dodgy website for a 1th their value and some criminal is laughing... oh and I get to use the cash I was given for my birthday last week to pay my bills rather then using it to enjoy myself like I'd planned.

Elro1985:
I've had this problem recently too... Was playing for a bit, signed out, then my friend texted about 10 mins laster asking me why I was playing FIFA game (which I never play. Tried to sign back in and I couldn't.

I'm very secure with my password, never use any dodgy websites etc. no idea how it happened... the b*****ds took £90.50 off me

However my expirence with Microsoft was different. I phoned them asap, from there they took over my account and suspended the guy who hacked it. It took a month to get things sorted but I'm back online now plus money is being refunded soon and they gave me some free xbox live gold account for the trouble

I have now taken any bank details of xbox live and will be purchasing points from game shops

This FIFA hacking problem has been going since about June, they buy stuff to sell on ebay apparantly so be on the look out

SAME DAMN GUY DID THIS TO ME!!!!!!!!!!
The asshole stole $250 from me and played FIFA on my account
Now I have to wait a month to get my account back

Had the same thing occur to me with XBL last month. There is no way anyone could have gotten my XBL information as I don't post it anywhere and hardly anyone even knows I have an Xbox.

Anyways a bunch of Kinect games and Anime crap got bought on my XBL account, around 200 dollars worth of points charged to my credit card. Stuff I'd never buy cause I don't even have a Kinect hardware expansion registered to my Xbox and all I use XBL for is watching television I want to watch and thats it, I never buy games.

XBL Support was fairly fast after I called them and filed the complaint, they got the charges charged back to my bank account within a few days, but my XBL account is still suspended and won't get unlocked til they've actually figured out how someone compromised it.

I run a totally wired network and don't patronize any sites at all that ask for my XBL information, I didn't, up to the hack occurrence, ever even log into the Xboxlive.com site from my computers. So effectively my XBL account info has never left my Xbox, never been used outside of the XBL interface on the console itself, and somehow someone not only got my gamer tag, but they also somehow brute forced a sixteen character random string password cause I don't use simple passwords or the same password on anything.

Even the XBL security folks investigating it are surprised cause given the security of my network and the lack of any capability of the information being gained in any other way than directly from my console, they couldn't, as of the last time I called them, even conceive of how this occurred. And this is Microsoft we're talking about its not like they've got a text file on an internal server with everyones passwords and gamer tags on it.

I run several servers myself I can't tell you what anyones password is regardless of them having a registered user profile on the server. Theres just no where, not even in the raw SQL that I can pull up that data, once someone enters a password on my server systems its encrypted, even from me, and I own the server....so the fact that this happened to my XBL account is quite concerning, cause I know MS isn't storing gamertag data in unencrypted formats.

So yes there is a potential that there is some kind of network security flaw in regards to XBL atm, but it doesn't seem to be on the level of the PSN hacks before the summer. Its smaller than that.

Your personal account was broken into, nobody hacked all of XBL. Don't use the same password for anything else, change all your current passwords for everything.

Pr0:

So yes there is a potential that there is some kind of network security flaw in regards to XBL atm, but it doesn't seem to be on the level of the PSN hacks before the summer. Its smaller than that.

In a way it's worse. At least with the PSN hacks it scared the living crap out of a lot of people, myself included, who rushed off and changed every password we had.

This? Hacking random people and stealing money from them is much more insidious, and less likely to draw the massive public attention that the PSN hack did, leaving more people to get victimised.

I hope so much that this hasn't happened to me. I can't check until next week though. Fuck.

tkioz:
I had a lovely wake up call this morning. I was actually feeling pretty good for a change, had a coffee in my hand, was patching the MMO I've been playing, then I checked my email.

$129 for Microsoft Gold Year Pack
$99 for Microsoft Points
$99 for Microsoft Points
You Gift of XBOX Live Time has been accepted
You Gift of Microsoft Points has been accepted
You Gift of Microsoft Points has been accepted
You Gift of Microsoft Points has been accepted
<repeatxTon>

Lots of swearing at this point. I log onto my Windows Live account (with it's secure 12 character password) and my Netbank, I find my credit card is maxed, actually overdrawn, (thankfully I hadn't made Octobers payment yet...) and my Live account is all screwed up.

I get my Live account back under control.

At this point I do a google, not much on major news in the last day or so about XBOX, but a few early articles about people in the same position as me.

Wonderful. Didn't Microsoft learn a thing when this crap happened to Sony?

Email to Microsoft sent demanding a full refund, none of this "credit" bullcrap, my account to be downgraded to silver, and my credit card info purged from their system.

No reply yet. Their service centre isn't open yet.

So I ring my bank, and get a very helpful operator who says because the transactions haven't been finalised yet they can't dispute them, but they will as soon as they are, she said that if Microsoft pull its thumb out I'll get my cash back right quick, if not I'll have to wait a little while. Which is -wonderful- around the 1st of the month when my bills are due... which funnily enough can't be paid with Microsoft points. Still not her fault, and she was very helpful.

Now it's a matter of waiting to hear from Microsoft. Most annoying thing is that because of their stupid "you must ring us to downgrade from gold to silver" and "you can't remove your credit card without putting another one in" crap I hadn't cancelled the service months ago, since I haven't used it since my eyes went bad. Seriously there should be a law saying that if you can sign up for something using an automated online system you can cancel the same damn way.

Anyone else get screwed over this morning?

I got an email about a week ago saying that the 6000 MS points I bought weren't going through because the Credit Card I used wasn't working(My mom sends her cards through the was regularly so she gets new ones a lot)and I would have to call to get it straightened out. I have not called them yet because I just got a new Xbox after mine RRoD after 7 years back in like February. I just bought a new one tonight (The GoW3 edition one. So this should be interesting.)

Sober Thal:
Your personal account was broken into, nobody hacked all of XBL. Don't use the same password for anything else, change all your current passwords for everything.

Refer to my above posts where I point out that every site and service has it's own password, and they are 12 characters long, a mix of numbers, symbols, and letters.

hehehe. Sorry, all I remember from when it happened to sony is allt he x box fanboys saying this shit would NEVER happen on XBL cause they pay more money. EDIT: now admittedly this is small peanuts compared to sony's, but still its just good to see the potential exists, knock a few people off high horses.

...

actually i shouldnt be so petty. i dont know, sucks for you and all that it happened to I suppose, but I dont feel sorry for you unless you decide to take immediate action.

tkioz:

Sober Thal:
Your personal account was broken into, nobody hacked all of XBL. Don't use the same password for anything else, change all your current passwords for everything.

Refer to my above posts where I point out that every site and service has it's own password, and they are 12 characters long, a mix of numbers, symbols, and letters.

And?

Your personal account was broken into, nobody hacked all of XBL.

Glad I don't pay for my live with a credit card. I drop the extra cash to use a pre-paid card.

I refuse to get a real credit card, due to these types of problems and..... abusing it myself, should I be like that. Though I did make use of a pre-paid credit card to buy something online last week, 4 extra bucks. But whatever.

Balls Mandingo:
had that problem recently actually. Someone hacked my account and made over $150 in charges. Changed the password and all that jazz. Called Xbox live support, said theyd launch an investigation and temporarily lock the account so no one could make any charges, said it usually takes about a week, maybe 2 in some cases. About a week goes by, no word from Xbox, and someone made yet another charge from my account despite it supposedly being "locked". Gave them another call, told them about it, they said theyd handle it.

Well, a little over a month goes by, still no word and I'm getting a bit impatient. Decide to try something for myself. Go onto the windows Live site, request new password sent to the email I opened the account with (first thing I did when my account was compromised was change ALL the passwords for my important emails), manually reset it, got back onto my xbox, went to system settings and recovered my account, chose a new password and all that jazz. Went to my bank, showed them which charges were fraudulent, they closed that card, ordered me a new one (only took 5 days to come in the mail) and had the funds back in my account the next day. Funny thing is, since the bank refunded my money without a fuss, all the money that guy spent on my account towards miscellaneous charges (a few games and a few thousand microsoft points) are basically mine for free now. Not only that but all the guy really did, besides buy a bunch of shit, was play a bunch of online games and add a bunch of friends and change my avatar. All in all it ended up increasing my Xbox profile stats, all I had to do was delete the people I didn't know and change my avatar back. So all in all, not a bad outcome. Xbox live support is more or less useless though, it seems

Same things happening to me only its been a few months. I changed my password all that stuff and right now my account is locked so I cant even buy anything with my profile so thats downright awesome. Theyre being huge assholes I have called 4 times now and they always say the same "Yeah we will work on it" It cannot be that tough can it?

Sober Thal:

tkioz:

Sober Thal:
Your personal account was broken into, nobody hacked all of XBL. Don't use the same password for anything else, change all your current passwords for everything.

Refer to my above posts where I point out that every site and service has it's own password, and they are 12 characters long, a mix of numbers, symbols, and letters.

And?

Your personal account was broken into, nobody hacked all of XBL.

And? Not just me, and though no action of mine, so Microsoft's problem and fault. If people are getting money stolen because they haven't secured something I hope they get raped in the United States of Litigation.

emeraldrafael:
hehehe. Sorry, all I remember from when it happened to sony is allt he x box fanboys saying this shit would NEVER happen on XBL cause they pay more money. EDIT: now admittedly this is small peanuts compared to sony's, but still its just good to see the potential exists, knock a few people off high horses.

Actually, this is worse. Nobody actually had the information taken from Sony used. These people are actually having money siphoned out of their accounts/credit cards.

Wonder how it's being done, though. You haven't been going on any shady sites with your Live information, have you OP?

 Pages 1 2 3 NEXT

Reply to Thread

This thread is locked