Frequently Asked Forum Questions | ||||
Search Older Posts on This Forum: Posts on Current Forum | Archived Posts | ||||
Re: If you're contacted by Louis Wu on LIVE... | |
Posted By: Louis Wu <halo@bungie.org> | Date: 9/29/08 7:11 a.m. |
In Response To: Re: If you're contacted by Louis Wu on LIVE... (The Handmade Hero) : I just looked up "how to steal xbox 360 account" on youtube.com out : of curiosity and a crapload of Tutorials showed up!!! Shouldn't microsoft : do something about that?! This one's pretty funny: http://www.youtube.com/watch?v=oeNydYfNLrc Basically "Send us your gamertag and password, and we'll send you to a page that lets you steal gamertags." I wonder how many suckers fell for it? This one bothers me a little more: http://www.youtube.com/watch?v=diUmRTgZM-w I don't know if it works or not, but it's certainly feasible; many automated systems have ways for admins to process things via email, and the only protection is an obscure password. If that password is discovered (or revealed by a disgruntled ex-employee, or something), the system is completely compromised, until someone fixes it. This might NEVER have worked, or it might have worked until someone noticed this YouTube vid... or it might still work today. There's really no way to tell without trying it out. (And if it's been locked down, trying it out might very well mean losing YOUR valid gold account that you used to activate the system.) Bottom line - the system is not infallible. Nobody guessed my password (though I'm really, really, REALLY happy that my XBL password is not used anywhere else at the moment) - they either socially-engineered the info out of a tech, or they fooled an automated system. Either way, they got info in ways that I am powerless to stop. A few people have suggested that once the account is recovered, I ask for a telephone password to be put on, before any info will be changed over the phone. That 's certainly worth a shot. (Won't stop the back-door stuff like that video above, if anything like that actually exists... but it'll slow down the social engineering.)
|
|
Replies: |
The HBO Forum Archive is maintained with WebBBS 4.33. |