We’ve mentioned this a few times now, but it appears that Microsoft still aren’t doing a great deal about the recent Xbox 360 account compromises – least of all making sure their paying customers are being looked after.
However, it looks like those affected are taking the matters into their own hands, like this individual who has set up a blog about her ordeals.
“On January 2nd 2012 I received a few emails in a quick succession that completely ruined my day,” starts the author. “Someone had logged into my Xbox Live account, purchased 10,000 Microsoft Points and a ‘Gold Family Pack’ for a grand total of $214.97 + Taxes.”
“They had purchased the Family Gold Pack so they could then transfer the MS Points to a dummy account that they had created. I immediately attempted to log into my Xbox Live account and, when that proved unsuccessful, I got straight onto the phone with the ‘Phone Support Team’.”
And this is where it all starts to go wrong. Indeed, if you’re not Geoff Keighley, chances are this will be somewhat indicative of your experience with the so-called Support Team.
The account in question was ‘locked’ for thirty days whilst Microsoft investigated. Amazingly, during that period, her account was hacked again, and further funds were removed from her account, with Customer Services seemingly unable to do a great deal about it.
An investigation on NeoGAF suggests that the reality of the whole ongoing issue is that there are blackmarket sites set up with accounts stolen (and created with stolen cards) for sale – and whilst nobody seems to really know for sure how the accounts are being compromised, Microsoft’s attitude is baffling.
Why, for example, is there no proper two-step authorisation required for Windows Live (and thus Xbox Live) accounts, like Google offers? Thankfully, this is now starting to get some traction, with Kotaku and Edge picking up on the story.
Microsoft’s last statement on this was that the problem is a user one, and cited ‘phishing’ as the explanation. TheSixthAxis maintains this is largely nonsense.
yiddo
Wow. Best thing for them to do right now would be to shutdown Xbox Live until this is resolved. It may seem extreme but until that happens the problem will only escalate. Saying that though, they never will as there will be outrage from unaffected Live users, and they seem defiant in ignoring the problem – despite more people losing money.
Good solution that, ignore it and hope the hackers all go away. Disgusting from MS.
moshi
Looks like the complete shut down of the PSN wasn’t such a bad idea after all.
hazelam
it’s certainly a better idea than sticking your head in the sand and pretending it’s all the customers fault.
Forrest_01
This is making the PSN hack look like a drop in the ocean.
Total shutdown is the way they really need to go by the sounds of it. Sony actually got it right with the way that they did things (although loads of customers wouldn’t have agreed at the time).
moshi
Hindsight is a wonderful thing.
Origami Killer
I didn’t actually mind the PSN going down – it was for a good cause. Some people blew it out of proportions, and showed they were selfish in my opinion. Strange not to see MS doing anything about this.
hazelam
it certainly puts Sony’s response in perspective doesn’t it?
they may not have been as prompt as they could have been but they’re doing a damn site better than ms.
and they actually took the network down completely, at some cost no doubt.
i was critical of the way Sony handled things, but the way ms are handling this is just beyond a joke.
i would not be surprised if the way ms are handling this result in some criminal prosecutions down the line.
it’s their legal obligation to protect their customers information, clearly, they’re not doing that.
not only are they denying it’s actually happening, but they’re allowing it to continue.
their pathetic, no class action suite, clause isn’t going to protect them over this one.
colmshan1990
Civil case in the making without doubt.
Criminal? Possible, but burden of proof would mean I’d prefer to go down the civil court route. But you’d definitely stand a good chance. After all, the only way those clauses can be binding is if the other side upholds their responsibilities too.
hazelam
i’m sure any civil suite would be separate from any criminal proceedings, if this continues they’re going to be investigated to some official body.
any company that takes people’s credit or debit card details has a legal obligation to protect that information.
i’d say the burden of proof would be on ms to prove that these people were caught out by a phishing scam and not that their network was hacked, if this does lead to any kind of criminal investigation.
i think at the very least, ms are going to end up with some hefty fines from this.
Deathbrin
Heard two cases like that on Twitter recently :S
Nutbrown
Eurogamer are now reporting this as well. They reference the same blog. Maybe it’s gaining some traction?
JBoo
If this happened to the PS3 it would be front ‘News’ on ‘EVERY’ gaming sites daily for months LOL:D Oh well. I feel sorry for people who will lose money over this + when PSN got hacked at least no ones money was taken thank god.
hol
I hope this isn’t true but I’ve read on g+ that there are sites selling phished live accounts & even offer a 2 hour guarantee! Even as a longtime playstation owner, I’m horrified that Microsoft seems to be ignoring these threats to thier customers privacy & security!
GTRsannin
Woop level 4 :) I think it’s better not to use CC information anywhere just buy PSN cards and what was the XBL point card it’s safer that way
GTRsannin
And yeah the way Sony handled their problem was the right way i think i said that back then as well
The Lone Steven
By god, that is very shit on MS’s part. They should have done what they promised they would do. I mean, normal people are losing money and may end up struggling to get through the month thanks to some ahole hacker.
MS, you can’t sweep stuff like this under the carpet. It’s only a matter of time before someone sues them. If they continue with the incompetent service then i can see a lot of people abandoning them in fear of getting hacked. Isn’t that a bit illegal on MS’s Part? Not protecting people’s details.
Kaminari
That’s a great commercial lesson to learn for Sony: look the other way and the problem will magically disappear. Thank you Microsoft!