Beware of the Xbox phishing scam!

22 November 2011

Bitterwallet - Xbox 360 250GBSome Xbox Live users are claiming that they've been targeted by a scam email, which means that you other Xbox owners should probably check your account because you might be getting phished.

This attack ('attack' is a bit strong, eh? Try 'hoodwinkery' instead) sent to Xboxers sends you to a fake website where, of course, you're asked to input personal details like addresses, emails and credit card details.

Anyone who gladly gives their personal details out to anyone brave enough to ask deserves to have their identity and money stolen, quite frankly. Either, because they've got to look like they care, Microsoft are said to be investigating but held their hands up and said that they don't know how many users are affected.

"We take the security of the Xbox Live service seriously and work to improve it against evolving threats," a Microsoft spokesman said. "Very occasionally, though, we are contacted by members regarding alleged unauthorized access to their accounts by outside individuals.

"We work closely with impacted members directly to resolve any unauthorized changes to their accounts and, as always, highly recommend all Xbox Live users follow our account security guidance in order to protect their account details."

Jason Hart, MD of Cryptocard and a former ethical hacker, said: "Xbox customers are finding that they might have had more than £100 pilfered from their accounts. This is the third instance of hacking to hit the gaming industry in as many months and it is clear that hackers are finding it all to easy to steal gamers identities and access the financial information they need to make off with users cash."

So there.

TOPICS:   Technology   Games   Privacy   Scams

9 comments

  • Sicknote
    Jason Hart, MD of Cryptocard and a former ethical hacker - what the hell is an ethical hacker..? Surely there is no ethics when you break the law....once a douche bag - always a douche bag. Peter Sutcliffe, lunatic and former ethical rapist - well he always apologised to the ladies before smashing their brains in....
  • Dick
    > Jason Hart, MD of Cryptocard and a former ethical hacker He's only a former ethical hacker? So now is he a non-ethical hacker, or an ethical non-hacker?
  • Dick
    @Sicknote ... ethical hackers are paid to try to hack into a company's website by the company.
  • Henry W.
    No one deserves to have their identity and money stolen, including the naive and gullible
  • George, b.
    Good morning madam. If you could just list your bank account details and sort code all this will be sorted out.
  • bob
    You make it sound like theyre being hard done by Henry, that it wasn't their fault at all. If it where some people who are inherently vulnerable i.e old people then maybe it'd be more of a tragedy. Sadly though its people who should know better, oh yeah free points from XxX420WEEDxMONSTERXxX with the message "wud u lik sum free msft point msg bak", better accept that one, totally legit, i'll do it whilst i wait for that nigerian banker to get back to me with my millions, ive only waited a couple of weeks so far. So much for that Jason Hart guy though, either he was quoted out of context or he could do with getting a bit more of a clue on "hacking" as the difference with this xbox one is its users giving their details away, Sony was Sonys own fault not protecting their servers.
  • Zleet
    To all those affected, I'm an official credit card inspector and will happily check your accounts if you send me your bank details.
  • mr p.
    Anyone who gives out there details freely and willingly after being contacted by a company the have a service with needs to ask themselves you should have my details already why are you trying to obtain them again. On a day to day basis I deal with people that do this and it is not all elderly people or vulnerable (disabled/handicapped etc ) but the general population with no common sense i.e idiots/morons and after all the years and horror stories of things like this happening over and over, yeah sure they may have changed tactics from the good old Nigerian lottery winnings to you access to you account is restricted e-mail from your bank which in-turn asks you to provide all you personal and account details. If alarm bells don't ring it will be a hard lesson learned...
  • TechLogon
    Phishing isn't hacking, you'd think Hart would know that... People who are caught out are not necessarily 'stupid' and don't 'deserve' to lose money - from my experience of such victims, some will be people who earn a whole wedge more than you and me whilst others will be too old, trusting, innocent, time poor, badly informed or just careless but we all make mistakes in life - what's important is that they learn from them and don't make the same mistake again...

What do you think?

Connect with Facebook, Twitter, or just enter your email to sign in and comment.

Your comment