We’ve mentioned this a few times now, but it appears that Microsoft still aren’t doing a great deal about the recent Xbox 360 account compromises – least of all making sure their paying customers are being looked after.
However, it looks like those affected are taking the matters into their own hands, like this individual who has set up a blog about her ordeals.
“On January 2nd 2012 I received a few emails in a quick succession that completely ruined my day,” starts the author. “Someone had logged into my Xbox Live account, purchased 10,000 Microsoft Points and a ‘Gold Family Pack’ for a grand total of $214.97 + Taxes.”
“They had purchased the Family Gold Pack so they could then transfer the MS Points to a dummy account that they had created. I immediately attempted to log into my Xbox Live account and, when that proved unsuccessful, I got straight onto the phone with the ‘Phone Support Team’.”
And this is where it all starts to go wrong. Indeed, if you’re not Geoff Keighley, chances are this will be somewhat indicative of your experience with the so-called Support Team.
The account in question was ‘locked’ for thirty days whilst Microsoft investigated. Amazingly, during that period, her account was hacked again, and further funds were removed from her account, with Customer Services seemingly unable to do a great deal about it.
An investigation on NeoGAF suggests that the reality of the whole ongoing issue is that there are blackmarket sites set up with accounts stolen (and created with stolen cards) for sale – and whilst nobody seems to really know for sure how the accounts are being compromised, Microsoft’s attitude is baffling.
Why, for example, is there no proper two-step authorisation required for Windows Live (and thus Xbox Live) accounts, like Google offers? Thankfully, this is now starting to get some traction, with Kotaku and Edge picking up on the story.
Microsoft’s last statement on this was that the problem is a user one, and cited ‘phishing’ as the explanation. TheSixthAxis maintains this is largely nonsense.