Microsoft addresses recent Xbox Live account thefts

Posted on January 14, 2012 - 4:45pm by Ryan Conway

It seems that hackers have managed to find a new loop hole (although Microsoft prefers not to call it that) via the account logins, which allows them to steal the Xbox Live accounts of other users.

XBL user Jason Coutee lost $100 when hackers broke into his account and after doing some detective work of his own, he discovered a way in which the hackers could have taken over his account.

Apparently, he discovered that there's a way for hackers steal passwords more efficiently by manipulating  an exploit that can get around the typical  CAPTCHA box that appears after failing to login into the service. Thanks to this, hackers are able to run a script that enters in a series of passwords, without interruptions from that particular security measure (for the most part anyway).

When Microsoft learned about this whole ordeal, they had this to say:

"Microsoft can confirm that there has been no breach to the security of our Xbox Live service. The online safety of Xbox LIVE members remains of the utmost importance, which is why we consistently take measures to protect Xbox LIVE against ever-changing threats. Security in the technology industry is an ongoing process, and with each new form of technology designed to deter attacks, the attackers try to find new ways to subvert it. We continue to evolve our security features and processes to ensure Xbox LIVE customers information is secure. Online fraud and identity theft are industry-wide problems, and as such people using any online services should set strong passwords, not share those passwords across multiple services and refrain from sharing any personal details that could leave them vulnerable. As always, we highly recommend our members follow the Xbox LIVE Account Security guidance provided at to protect your account. This is not a 'loophole' in The hacking technique outlined is an example of brute force attacks and is an industry-wide issue." 

Microsoft also said that these kinds of intrusions are also likely the result of nasty pieces of malware and various phising schemes from differing sources that are being used to snatch up passwords.

So, if you're an Xbox Live user, be sure that your password is a secure one. 

Man, this hacking crap is getting old fast. 

g1 Discussions

Use a Facebook account to add a comment, subject to Facebook's Terms of Service and Privacy Policy. Your Facebook name, photo & other personal information you make public on Facebook will appear with your comment, and may be used on ScrewAttack's media platforms.

Around The Web