As if still ongoing issues with Xbox Live security weren’t enough, a report that suggests that credit card and other personal info remains on a ‘wiped’ Xbox 360 is like digital icing on a very stinky old cake. That’s gone mouldy.
“You might not want to sell or give away your Xbox 360 any time soon,” said Kotaku over the weekend. “Not without taking a hammer to the hard drive.”
According to a report from researchers at Drexel University, it’s trivial enough to “dig into a system’s hard drive and excavate [a] credit card number or other personal information.”
“Microsoft does a great job of protecting their proprietary information,” said researcher Ashley Podhradsky. “But they don’t do a great job of protecting the user’s data.”
Microsoft have today responded.
“We are conducting a thorough investigation into the researchers’ claims,” said the manufacturer. “We have requested information that will allow us to investigate the console in question and have still not received the information needed to replicate the researchers’ claims.”
Microsoft say that the Xbox is not designed to store credit card data locally on the console.