iTnews
  • Home
  • News
  • Technology
  • Security

Microsoft blamed for Xbox Live account thefts

By Tom Sanders
Mar 23 2007 1:52PM
Follow google news

Redmod helpdesk giving out confidential information, claims gaming clan.

Microsoft blamed for Xbox Live account thefts
Microsoft's helpdesk is the key to the recent Xbox Live account thefts, according to a gaming clan which admits to being one of the culprits.  

The InFamOuS clan said on its website that its members "steal at least 10 accounts a day". 

"Now you may be wondering how we get your information? Its easy, you call 18004myxbox, pretend to be that person, make up a story about how your little brother put in the information on the account and it was all fake, blah blah blah," the group boasts on its site.

"You might get one little piece of information per call but then you keep calling and keep calling every time getting a little bit more information every time.

"Once you have enough information you can get the Password on the windows live ID Reset, they may tell you they can't, but its bullshit. People at Bungie CAN and WILL reset your password."

Xbox Live account thieves have made similar claims on online forums in the past. The described method is known as social engineering and attempts to dupe Microsoft helpdesk employees into divulging confidential information.

The InFamOuS clan also admitted to using credit cards linked to the accounts to purchase so-called Microsoft Credits.

The issue of stolen Xbox Live accounts surfaced earlier this week when security researcher Kevin Finisterre tagged the problems on the Full Disclosure security mailing list. He reported the matter after his girlfriend's 'gamer tag' was stolen. 

Microsoft has always maintained that its systems are secure. The company concluded an internal audit on Wednesday and proclaimed that it had not found any issues.

"We have looked into the situation and found no evidence of any compromise of the security of Bungie.net or our Live network," said a company spokesperson. 

Microsoft admitted, however, that most known cases of Xbox Live account theft are the result of social engineering, where criminals dupe victims into giving up confidential data.

The vendor did not immediately respond to a request for comment on the claims made by the InFamOuS clan.

In response to Microsoft's statement, Finisterre said that Microsoft was correct in blaming social engineering, but left out that it was the firm's employees who were targeted.

Add iTnews as your trusted source

Add iTnews As Your Trusted Source Add iTnews As Your Trusted Source
Got a news tip for our journalists? Share it with us anonymously here.
Copyright ©v3.co.uk
Tags:
accountblamedforlivemicrosoftsecuritytheftsxbox

Related Articles

  • Anthropic releases Mythos-class model for public use Anthropic releases Mythos-class model for public use
  • Apple bumps up security in fresh operating system releases Apple bumps up security in fresh operating system releases
  • Meta accuses NSO Group of violating court order by WhatsApp spear phishing Meta accuses NSO Group of violating court order by WhatsApp spear phishing
  • Researchers build self-replicating AI worm with BYO LLM Researchers build self-replicating AI worm with BYO LLM
Join our WhatsApp Channel

Partner Content

Scalable AI solutions: secure delivery
Scalable AI solutions: secure delivery
Agile isn’t the problem: why projects still fail, and what’s missing
Partner Content Agile isn’t the problem: why projects still fail, and what’s missing
Take control of your connectivity with Telstra’s Adaptive Networks Centre
Partner Content Take control of your connectivity with Telstra’s Adaptive Networks Centre
AI is delivering business value today
Partner Content AI is delivering business value today

Sponsored Whitepapers

Agile in the AI Era: why projects still fail
Agile in the AI Era: why projects still fail
When Technology Becomes the Blocker: Unlocking Real Outcomes from AI and Cloud
When Technology Becomes the Blocker: Unlocking Real Outcomes from AI and Cloud
High-volume data sources for AI-driven security analytics
High-volume data sources for AI-driven security analytics
How healthcare organisations can get more value from cloud
How healthcare organisations can get more value from cloud
1 in 3 companies lose SaaS data. Here’s how to prevent it
1 in 3 companies lose SaaS data. Here’s how to prevent it

Events

  • iTnews State of Security Breakfast iTnews State of Security Breakfast
  • iTnews State of Data & AI Breakfast iTnews State of Data & AI Breakfast
  • The 2026 iAwards The 2026 iAwards
  • Integrate 2026 Integrate 2026
  • Security Exhibition & Conference Security Exhibition & Conference
Share on Facebook Share on LinkedIn Share on Whatsapp Email A Friend

Most Read Articles

Anthropic opens Claude Mythos Preview AI program to Australia

Anthropic opens Claude Mythos Preview AI program to Australia
Defence says Palantir is "sandboxed" in its environment

Defence says Palantir is "sandboxed" in its environment
Services Australia describes fraud, debt-related machine learning use cases

Services Australia describes fraud, debt-related machine learning use cases
Researchers build self-replicating AI worm with BYO LLM

Researchers build self-replicating AI worm with BYO LLM
techpartner.news logo
Sydney-based AI-cloud waste startup raises $3m
Sydney-based AI-cloud waste startup raises $3m
Brennan uses NiCE to modernise its contact centre
Brennan uses NiCE to modernise its contact centre
Impact Awards: Tecala slashes customer response times for fintech IQumulate
Impact Awards: Tecala slashes customer response times for fintech IQumulate
Interactive introduces private cloud platform
Interactive introduces private cloud platform
Digital61 expands cybersecurity portfolio
Digital61 expands cybersecurity portfolio
All rights reserved. This material may not be published, broadcast, rewritten or redistributed in any form without prior authorisation.
Your use of this website constitutes acceptance of nextmedia's Privacy Policy and Terms & Conditions.