A few posts about the 'non' hack
http://www.reghardware.com/2011/11/22/x ... ing_scams/Quote:
Microsoft sources have denied a claim that Xbox Live has been hacked, stating instead that gamers said to have had up to £100 lifted from their accounts were victims of phishing scams.
Allegations that cyber criminals have "hacked into thousands of Xbox Live accounts to steal millions of pounds" in the UK were made by The Sun newspaper this morning.
However, sources close to Microsoft insisted there is no evidence that any account has been hacked.
But the source admitted there has been an increase in attempts to gain punters' login credentials through deception - phishing.
Other attacks involve criminals attempting to befriend gamers through social networks in the hope of gathering information to reveal login details.
Microsoft has previously warned Xbox users to be on the look out for such cons.
However, Microsoft must do more to improve security, Jason Hart, MD of security firm Cryptocard, told Reg Hardware.
"Clearly too many weak links remain," he said. "At the moment gamers aren't being properly authenticated when they log on as gaming companies continue to use static passwords.
"You can't stop thieves sneaking up to the back door, but you can put in place measures to stop them breaking in."
Last month, a number of Xbox 360 owners revealed that their accounts and credit cards had been compromised, with stolen MS Points spent on Fifa 12 content packs. ®
http://spong.com/article/25797/Murdoch- ... ia-FollowsQuote:
When is a "Hack" not a "Hack"? Well, people disagree. It could be said that if someone looks over your shoulder when your enter a PIN, and they walk off with that number, that's a 'Social Hack'. However, The Sun, The Daily Telegraph and The Daily Mail (both re-reporting The Sun) seem to think that a 'Hack' is when someone responds to a Phishing Email.
Starting with The Sun, with its headline and strap:
"Gamers caught in Xbox cyber fraud - Web crooks raid accounts"
It then goes crazy:
"ONLINE crooks have hacked into thousands of Xbox Live accounts to steal millions of pounds.
"The average loss to gamers in the UK is around £100 — but many have had more than £200 stolen."
Not okay. Wrong. In fact, the paper even contradicts itself:
"In one 'phishing' con, crooks sent emails to players directing them to bogus websites offering free Microsoft points that can be used to buy games."
"Bogus websites" not Xbox Live at all.
This hasn't stopped The Mail, which starts with, "Thousands of players are believed to have been hit by the scam which gets con artists into Xbox Live accounts which contains details such as credit card numbers."
However, again in contradictory mode, "The scam works by sending players emails that direct them to bogus websites offering free Microsoft points that can be used to buy games.
Gamers were fooled into visiting pages that stole account details and then gradually 'leeched' money from their accounts. Online play on Xbox 360 requires an account with credit card details attached
Victims are then asked to enter personal details which let criminals access accounts and get hold of their credit card information.
"Crooks then take small amounts from credit cards over several weeks so it is hard to detect them."
So, that's bank accounts then?
The Mail does attempt a justification with, "Other victims have apparently lost money when their passwords were guessed by criminals who befriended them before coaxing personal information out of them." Yup, "guessing".
Never fear though, as respected broadsheet, The Daily Telegraph clears things up in its headline: "Xbox Live customers 'hacked' in fresh cyber fraud case". Oh, no it doesn't. Let's see about the detail:
"As part of their scam, the gangs sent emails to players directing them to fake websites offering free Microsoft points that can be used to buy games.
"Duped victims then entered their personal details, which allowed criminals access to their accounts and valuable credit card information.
"They also reportedly befriend players online and convince them into volunteering personal details."
Yup, not a hack of Xbox Live.
But remember, fear sells newspapers, especially around Xmas. And more especially if the newspaper's owner has committed large sums of money to a digital-only newspaper running on another platform.
We are of course requesting comment from Microsoft on the matter. It has yet to provide comment to any of the 'sources'.