The sequence of events that led me to a whopping elephant in the room.

The other day on my way home I got a mail from X-box live confirming
my purchase of 6000 ms points. Ok I thought its x-box live auto renewing my
gold subscription.

I get home and log onto my x-box and find I’m unable to get
onto my account.

I figure it has expired and it is being renewed.

I log onto my computer and check x-box live billing as far
as I remembered the subscription was going to run out in 2 weeks.

I check the 6000 ms points to find I used them to but approx
60 marketplace extras for FIFA 12 which I don’t even own.

mmmmmmmmm. My account has been hacked. Bearing in mind
no-one (not even my wife knows my passwords)

I phone MS customer support and the thing that really surprised
me was it didn’t surprise the support operator one little bit.  

They then proceeded to lock the account so they can ‘investigate’
for 25 days. I am told I will get the money back and can’t remove the credit cards
from the account as they have locked it. (remember that bit for later)

I then spend 1 hr of my time cancelling every credit card
and bank card I have that is connected to the ‘secure’ service. I now have the inconvenience
of having to go to the bank to get cash for stuff like food/petrol, remember my
card is also my access to cash machines (ATMs) etc. The credit card company say
they can’t stop the money leaving the account for Microsoft despite it not
actually leaving the account yet but I can phone them in 2 days and request
some forms to fill out and after 60 days they should be able to do something,
yet I bet when my credit card bill comes in they expect me to pay that little
transaction before the end of the month or they will helpfully charge me
interest. Maybe I could use the £50 that I am ‘lending’ Microsoft to I don’t
know maybe pay bills. Radical I know

Then I spent 2 hrs changing every password I have for
multiple websites (not all the same passwords I might add but you never know of
how they are connected). My wife then changes anything that may use our email
as well. Excellent use of our time that.

Next day I had a 2 min look on the internet searching ‘X-box
live account hacked’ and I got a measly 4,620,000 hits. Without looking too
hard into it I realised it’s been going on since at least 2005 (I’m sure more
info can be found but I can’t really be bothered looking further into it). What
I found particularly helpful was the YouTube videos on how to do it, teaching
the hackers of tomorrow.

And now to the Elephant in the room.

MS know this has been going on, these forums and the responses
from Customer Services prove that, they effectively have a security issue that
they known about since before 2005. As a company they let it carry on. Strangely
I recall Sony getting into a little bit of bother not so long ago for security
that was a bit ‘lax’. Microsoft, I trusted you to keep my details secure and
safe. You MS have let someone into my personnel information and buy something
with my money out of my bank.

Not only are you ignoring the Elephant in the room you are
letting it cr*p on my rug and hope I’m not bothered. Well done, good job there.
Great approach, Outstanding work. Bet you all feel you’ve done a great job when
you get home, truly excellent. You must make yourself proud of your outstanding
product.

Oh with regards to the ‘remember that bit for later’
earlier, I went into my ‘locked’account earlier and managed to remove my cards
from it, so thanks for keep my house well....... locked.

Thanks for nothing.

 

p.s. Any forum moderators, don’t bother saying please
contact Customer Service, you already know the problem/issue so tell instead of
wasting your time ( you’ve wasted enough of mine) get someone to maybe fix the lock instead of issuing Elephant dung brooms.

 

Question Info


Last updated July 5, 2018 Views 2 Applies to:

And  I just noticed how the Fifa 12 icon appears under my profile, just to rub it in a little bit more. Maybe it could add a little Elephant cr*pping icon if you have been hacked. or picture of a really sad face etc etc

Did this solve your problem?

Sorry this didn't help.

Great! Thanks for marking this as the answer.

How satisfied are you with this reply?

Thanks for your feedback, it helps us improve the site.

How satisfied are you with this response?

Thanks for your feedback.

Nobody here can help you. 1-800-4-MY-XBOX is your only avenue. Call and start an unauthorized access case.

Did this solve your problem?

Sorry this didn't help.

Great! Thanks for marking this as the answer.

How satisfied are you with this reply?

Thanks for your feedback, it helps us improve the site.

How satisfied are you with this response?

Thanks for your feedback.

thanks, the fact they have a unauthorised access case category is a bit worrying!, thanks for the advice though, have a good weekend.  Nice gamer picture by the way!

Did this solve your problem?

Sorry this didn't help.

Great! Thanks for marking this as the answer.

How satisfied are you with this reply?

Thanks for your feedback, it helps us improve the site.

How satisfied are you with this response?

Thanks for your feedback.

I had no idea it was that easy to hack an Xbox Live account. A couple of things you can do to protect yourself:

 

Change you password often

 

Don't have a credit card linked to your account

 

You can use Paypal or prepaid cards to buy points and membership to Xbox Live. I hope MS are doing everything they can to improve security in the future.

 

 

Did this solve your problem?

Sorry this didn't help.

Great! Thanks for marking this as the answer.

How satisfied are you with this reply?

Thanks for your feedback, it helps us improve the site.

How satisfied are you with this response?

Thanks for your feedback.

On second thoughts I'm pretty sure Xbox accounts are fairly secure, a friend of mine had his account hacked, but his PS3 name and password were the same, so it was due to the PS3 hacking that his account was compromised.

Are you sure you didn't share your password with anyone? There are plenty of phishing scams out there.

Did this solve your problem?

Sorry this didn't help.

Great! Thanks for marking this as the answer.

How satisfied are you with this reply?

Thanks for your feedback, it helps us improve the site.

How satisfied are you with this response?

Thanks for your feedback.

be wary of certain sites that ask you for your email address to sign in as some out there are indeed phishing scams only use your email address on trusted sites.

Did this solve your problem?

Sorry this didn't help.

Great! Thanks for marking this as the answer.

How satisfied are you with this reply?

Thanks for your feedback, it helps us improve the site.

How satisfied are you with this response?

Thanks for your feedback.