-
Hey, guest user. Hope you're enjoying NeoGAF! Have you considered registering for an account? Come join us and add your take to the daily discourse.
Hey, has your Xbox Live account been hacked/FIFA'd? Post here!
- Thread starter chubigans
- Start date
bigtroyjon
Member
Sounds like you have some kind of personal security issue. I hope you figure it out soon!
Wow, my account just got hacked too. Got kicked off from Netflix just now and saw someone playing Fifa 12 and spent all my points I had (luckily only 720). Haven't had any charges added from my card on the account yet, guess I need to wait and see what happens from that since MS has my account locked for now. If they haven't charged that credit card, do I still need to go ahead and get it cancelled? How much info do they even have from it, or can they only have used it on my Xbox account?
EDIT: Forgot to mention some of the stuff asked in the OP. Yes I have an EA account but the passwords are different. Gamertag is 3-4 years old. And no 4-button security. Also I didn't think to check what the password on my security question was, went ahead and changed it before I thought to look.
This is blowing my mind that a company like EA can let this happen through their security (at least I'm assuming). I guess I need to read through all these posts in this thread and do some searching, figure out exactly what precautions I need to take.
EDIT: Forgot to mention some of the stuff asked in the OP. Yes I have an EA account but the passwords are different. Gamertag is 3-4 years old. And no 4-button security. Also I didn't think to check what the password on my security question was, went ahead and changed it before I thought to look.
This is blowing my mind that a company like EA can let this happen through their security (at least I'm assuming). I guess I need to read through all these posts in this thread and do some searching, figure out exactly what precautions I need to take.
Zoe
Member
There's no evidence that there's an issue with EA's security. FIFA is being used because the in-game items can be flipped for real money.
gregor7777
Banned
This is horseshit.
So my account was compromised in October. Mind you, I haven't owned an Xbox since around 2008. I have played a few Windows Games since then, so I've used the account from time to time.
Anyway, the account region got switched to Russian, I got two big charges on my CC for somewhere like $150 in points cards.
My bank refunded the money straight away, and I never heard back from MS after my initial call to them. I was told to wait 25 days or something.
Fast forward to yesterday, I buy a new 360. I get it up and running, and sure enough, the Dashboard is primarily in Russian. My region and language on the 360 is set to US/English, but it doesn't change the Russian text (or apparently, availability of some apps/games).
I have no access to any of my prior Arcade purchases. It's jank, like it knows I bought them but after they download I only have acces to the demo versions.
After calling MS, the lady has me on the phone for 45 minutes as she fumbles around my account to no avail. Notifies me they never sent the recovery email after the 25 days as originally promised. Now I have to wait 3 days to hear back from their fraud department.
I see a lot of people posting around the web over the last 6 months about similiar situations, and a lot of them complaining that even after hearing back from the fraud dept that they never got their arcade purchases back, and in some cases, lost their Live sub.
I forgot how much MS sucks with this stuff. Hopefully this all works out. Quite the "welcome back" to the Xbox world.
So my account was compromised in October. Mind you, I haven't owned an Xbox since around 2008. I have played a few Windows Games since then, so I've used the account from time to time.
Anyway, the account region got switched to Russian, I got two big charges on my CC for somewhere like $150 in points cards.
My bank refunded the money straight away, and I never heard back from MS after my initial call to them. I was told to wait 25 days or something.
Fast forward to yesterday, I buy a new 360. I get it up and running, and sure enough, the Dashboard is primarily in Russian. My region and language on the 360 is set to US/English, but it doesn't change the Russian text (or apparently, availability of some apps/games).
I have no access to any of my prior Arcade purchases. It's jank, like it knows I bought them but after they download I only have acces to the demo versions.
After calling MS, the lady has me on the phone for 45 minutes as she fumbles around my account to no avail. Notifies me they never sent the recovery email after the 25 days as originally promised. Now I have to wait 3 days to hear back from their fraud department.
I see a lot of people posting around the web over the last 6 months about similiar situations, and a lot of them complaining that even after hearing back from the fraud dept that they never got their arcade purchases back, and in some cases, lost their Live sub.
I forgot how much MS sucks with this stuff. Hopefully this all works out. Quite the "welcome back" to the Xbox world.
RoninChaos
Member
That definitely blows.
Since dd is supposed to be the future, shit like this will get more and more prevalent.
Since dd is supposed to be the future, shit like this will get more and more prevalent.
gregor7777
Banned
Exactly. I mean, what would the scam be here on my end that is holding this up? I've proven I'm "me" to the best of my ability: with a SS#, address, correct secret question answer, etc.
So given that proof of account ownership, and given the account history (initially set to US/English) while under my control, what could possibly be the risk in assigning the account to the proper initial account region?
I just don't understand the process at all, including the potential of losing all my rightfully purchased games.
EDIT: Is there anyone here from MS that could help me with this through PM?
Ugh, woke up this morning to two email notifications about points purchases, one for 6000 that went through and one for 4000 that was declined.
Tried to log in to xbox.com and sure enough my password didn't work, went to change password and there was an email address attached that I didn't recognize. When I logged into my console (set for auto log-in) it told me that I had logged into my gamertag from another console previously.
Called bank, got the $74.99 charge reversed, and called MS to start fraud claim. I was told it would take two business days, which doesn't seem too bad at least.
Odd thing is, MS told me they would suspend my acct till then, but I've been able to log-in to Xbox Live just fine, and also was able to change password and remove extra email address through xbox.com, so I'm not sure that I get what they actually suspended here.
Also, there's no purchase history on my acct for this month, nothing about the 6000 points, or anything that they would have been used for, is that normal?
Tried to log in to xbox.com and sure enough my password didn't work, went to change password and there was an email address attached that I didn't recognize. When I logged into my console (set for auto log-in) it told me that I had logged into my gamertag from another console previously.
Called bank, got the $74.99 charge reversed, and called MS to start fraud claim. I was told it would take two business days, which doesn't seem too bad at least.
Odd thing is, MS told me they would suspend my acct till then, but I've been able to log-in to Xbox Live just fine, and also was able to change password and remove extra email address through xbox.com, so I'm not sure that I get what they actually suspended here.
Also, there's no purchase history on my acct for this month, nothing about the 6000 points, or anything that they would have been used for, is that normal?
I had my account accessed last night. Strange enough, microsoft seemed to be right on top of it. Someone bought about $150 worth of something with my paypal, but microsoft has refunded it. My account password was changed, and the account email as well. I haven't figured out yet if they used my credit card too. There is nothing under recent purchases as well, and my account seems to work fine.
Is there a way to tell what consoles you have been on?
Under Profile Protection all I can see is this:
I have 2 consoles, so that doesn't bother me.
I had 2 other consoles from back in the day. But the 2012 one doesn't sound right. Some serials or IDs would be nice. I guess since they would require passwords it should be okay?
Under Profile Protection all I can see is this:
I have 2 consoles, so that doesn't bother me.
I had 2 other consoles from back in the day. But the 2012 one doesn't sound right. Some serials or IDs would be nice. I guess since they would require passwords it should be okay?
Got three notifications of purchases this afternoon. The guy keeps logging in to my Windows Live account and changing my password etc. It's happened about three times in the past few hours. He even modified all the contact info on the account (address etc.) and even changed the icon to Call of Duty one.
I'm about to fly to Brazil and fuck his day up.
I'm about to fly to Brazil and fuck his day up.
That's what I do. Give them nothing and you are safe. Sucks that we can't have comfort in keeping a balance of points in case we want to buy something out of the blue. I always spend all my points as I add them.
Got a 2800 points card yesterday and today I bought Trials:Evo, Missing Link DLC, and Walking Dead Ep.1 all within 5 minutes. Pre loaded the two arcade games by getting the "trials". I then added the points and bought the arcade games and then bought Missing Link DLC since it was 2 GB and I'm not able to get it before buying like arcade games. So I had a balance for literally mere minutes and they dwindled in those minutes as well.
I am noticing a ton of accounts and consoles being banned for being involved with theft of xbox live accounts on the xbox forums.
http://forums.xbox.com/xbox_forums/xbox_support/f/2366.aspx
http://forums.xbox.com/xbox_forums/xbox_support/f/2366.aspx
SkateZilla
Member
I guess beta testers for MS arent Immune to this, less than 2 weeks after playing Battlefield 3 and "Linking" my XBL and EA logins this happens to me.
my Xbox Live Account is Hijacked via FIFA12 for FIFA12 Cards, and all my MS Points spent,
my account is locked for investigation and all that crap.
difference is, with my account being flagged for being a XBL beta tester, as soon as the tech looked up my account i was forwarded to a english speaking tech support guy who was able to understand what i was telling him without having to use dummy terms.
ZuneMarketplace wouldnt connect all week for me,
no weird emails were added to my XBL Account,
The password wasnt even changed
they didnt try to buy anymore MS Points.......
I did not get any emails or messages about "Marketplace Purchases" like i normally do.
So I made sure no emails or phone numbers were added, changed the password, called MS to start the case number.
These Show up on my Billing for MS Passport, but not on the History when I check through the console.
4/22/2012 PREMIUM GOLD JUMBO -- Game Consumable -240 30
4/22/2012 PREMIUM GOLD JUMBO -- Game Consumable -240 270
4/22/2012 PREMIUM GOLD JUMBO -- Game Consumable -240 510
4/22/2012 PREMIUM GOLD JUMBO -- Game Consumable -240 750
And 3 Achievements for FIFA12, that I dont even own.
that fact that i've been avoiding EA Games/EA Origin and not having to deal with that crap, up until 2 weeks ago and all of a sudden it happens now means the leak is on EA's Servers.
my Xbox Live Account is Hijacked via FIFA12 for FIFA12 Cards, and all my MS Points spent,
my account is locked for investigation and all that crap.
difference is, with my account being flagged for being a XBL beta tester, as soon as the tech looked up my account i was forwarded to a english speaking tech support guy who was able to understand what i was telling him without having to use dummy terms.
ZuneMarketplace wouldnt connect all week for me,
no weird emails were added to my XBL Account,
The password wasnt even changed
they didnt try to buy anymore MS Points.......
I did not get any emails or messages about "Marketplace Purchases" like i normally do.
So I made sure no emails or phone numbers were added, changed the password, called MS to start the case number.
These Show up on my Billing for MS Passport, but not on the History when I check through the console.
4/22/2012 PREMIUM GOLD JUMBO -- Game Consumable -240 30
4/22/2012 PREMIUM GOLD JUMBO -- Game Consumable -240 270
4/22/2012 PREMIUM GOLD JUMBO -- Game Consumable -240 510
4/22/2012 PREMIUM GOLD JUMBO -- Game Consumable -240 750
And 3 Achievements for FIFA12, that I dont even own.
that fact that i've been avoiding EA Games/EA Origin and not having to deal with that crap, up until 2 weeks ago and all of a sudden it happens now means the leak is on EA's Servers.
faulty_fork
Member
Fuck this! I had redeemed a 4200 ms point card just a couple of days ago and today when I sign on everything is spent and it says FIFA 12 is the last played game.
I managed to reset the password, but is there anything else I should do before calling MS tomorrow? (support closed for the day here in Sweden)
I managed to reset the password, but is there anything else I should do before calling MS tomorrow? (support closed for the day here in Sweden)
Not cool you special treatment for being a beta tester. I'm not mad myself, I just realize how lame it is to treat other customers better just because they are associated with the company somehow. Discounts and such are one thing, but customer service related to being hacked should be equal on all levels.
bigtroyjon
Member
I would hope that those would be the reasons rather than just "Oh, you're one of us? We'll figure this out ASAP, sir".
Ardenyal
Member
toythatkills
Member
I watched half of that video and I have literally no idea what he was talking about.
I don't even know what all those screens mean or what they were. Can you sum up what is actually going on?
CrunchinJelly
formerly cjelly
It's a YouTube video with someone waffling nonsense in an awful radio voice with 'funny' on-screen captions.
As if we haven't seen thousands of those before.
As if we haven't seen thousands of those before.
Ardenyal
Member
The guy was hacked and the hacker is leaving messages to him by renaming his squads in Ultimate Team (Fifa 12). Basically it confirms that the hackers can target people quite easily and hacking someone takes just minutes.
It's a sarcastic post on Gaf, who would have thought..
Speedymanic
Banned
So a 'hacker' is claiming there's an exploit in Fifa 12 from which he can hack XBL accounts? I'm shocked.
Anyway, video seems suspect, not buying it.
Anyway, video seems suspect, not buying it.
Smart work.
Yesterday I saw Best Buy had 3-packs of 800 point cards for $29.99 which is not any kind of discount, but it does give you more flexibility in adding MS points to your account. I think I'll get a pack, and then the next time I want to buy a 1200 point game I can redeem one 800 point card and cash in some Bing Rewards credits to get the other 400 points, then buy the game immediately.
Meanwhile I have $15 of credit just sitting in my PSN account.
ThoughtsOfSpeaking
Banned
So let me get this straight.
If you have a Xbl account you are vunerable, no matter the age of the account.
The hackers reset your email via a forigen language
They then buy points with your credit details, spending on FIFA 12 items.
The hack may or may not be related to if you have a EA account with the same email.
So. Is there anything you can do to further secure yourself? I don't have a EA account, my gamer tag is relatively new, I have only bought live gold once on it and that has been via a 3 month card and on this tag I have never added any ms points.
I will be purchasing some old dlc soon so is best practise load the points and spend straight away?
If you have a Xbl account you are vunerable, no matter the age of the account.
The hackers reset your email via a forigen language
They then buy points with your credit details, spending on FIFA 12 items.
The hack may or may not be related to if you have a EA account with the same email.
So. Is there anything you can do to further secure yourself? I don't have a EA account, my gamer tag is relatively new, I have only bought live gold once on it and that has been via a 3 month card and on this tag I have never added any ms points.
I will be purchasing some old dlc soon so is best practise load the points and spend straight away?
The_Inquisitor
Member
Was hacked last week. Because I am paranoid post Sony I had only 1600 pre-paid points in my account (no CC).
They bought Trials and some shitty BMW game. I found out I was hacked when I went to buy trials and saw it was already purchased. >.<
Was refunded an extra 300 points and got to keep trials. All in all good experience.
They bought Trials and some shitty BMW game. I found out I was hacked when I went to buy trials and saw it was already purchased. >.<
Was refunded an extra 300 points and got to keep trials. All in all good experience.
Best tip would be to use a unique password for your xbl account.
Use prepaid points cards only (never ever give MS your credit card number - sending $100 notes in the post would be safer)
Buy points only when you need them. Enter the codes only when youre going to use them.
Preferably, use the points when a sale is on so you can minimise the number of left-over points on your account.
I work on the assumption that MS have a bad system that will get hacked some day. So I just make sure I have as little to lose as possible.
Use prepaid points cards only (never ever give MS your credit card number - sending $100 notes in the post would be safer)
Buy points only when you need them. Enter the codes only when youre going to use them.
Preferably, use the points when a sale is on so you can minimise the number of left-over points on your account.
I work on the assumption that MS have a bad system that will get hacked some day. So I just make sure I have as little to lose as possible.
ThoughtsOfSpeaking
Banned
Thanks. I've changed both the password and email address associated with the account, with the actual name registed on the windows live account being a fake one.
Will only buy stuff with points cards and spend them soon as I load them.
At least they bought a decent game.
All I got was Bejeweled 3, Fruit Ninja, Haunted House, Tower Bloxx and a couple avatar items. Bleh
blitzcloud
Banned
One thing's for sure... MS have some golden status PR. Any other company would at least have the whole internet against after all these months... yet nothing, nada.
No worries.
Have you added your credit card number to your console at all? If not, keep it that way.
Going by what you said above, youre probably going to be fine barring incredibly bad luck (ie someone hacking your account just as you add points to it?).
Just use prepaid xbox live gold cards if/when you renew your subscription.
edit: also, if youre buying old disc DLC, check to see if there is a "Game Of The Year" edition of the game in question (eg Red Dead Redemption, Fallout 3, Batman Arkham Asylum). Some of them have the content on the disc and others come with a code for that extra content, cutting out the need for using points in many cases.
VibratingDonkey
Member
Nothing for you to damage control here. He only mentions Ultimate Team accounts.
This appears to have happened about a month before EA finally updated UT security.
Maybe one day EA will add security questions to Origin accounts as well.
ThoughtsOfSpeaking
Banned
No worries.
Have you added your credit card number to your console at all? If not, keep it that way.
Going by what you said above, youre probably going to be fine barring incredibly bad luck (ie someone hacking your account just as you add points to it?).
Just use prepaid xbox live gold cards if/when you renew your subscription.
edit: also, if youre buying old disc DLC, check to see if there is a "Game Of The Year" edition of the game in question (eg Red Dead Redemption, Fallout 3, Batman Arkham Asylum). Some of them have the content on the disc and others come with a code for that extra content, cutting out the need for using points in many cases.
Never done it on Xbl, and regret doing it on psn ( was never ripped off but the simple principle)
Points cards all the way.
most of the dlc I want are for games that werent a critical success so no GOTY edition.
I changed my account recovery options to include 10 separate email addresses. That way, you cannot add another without clicking a link from one of those 10 accounts. I think this prevents the attack but I'm not positive.
Speedymanic
Banned
I have kids to feed. If I don't damage control, I don't get paid.
Speedymanic
Banned
Yes. You also keep any content that the hackers bought using those points, which can be a nice bonus, unless it's fifa gold shite.
Looks like they bought fifa garbage. The last EA game I bought that I think I used an online login for was Madden 06. Christ.
TheContact
Member
My account was hacked about 4-5 months ago. I hadn't played in a while, and trying to sign in one day, I noticed it wouldn't let me. I did a search for my user name and it said I was in Mexico and all my points were missing. It took a couple days for the Microsoft Xbox customer support to fix it, and they were able to get everything back to the way it was before I was hacked. Luckily, I learned my lesson a few years ago to never put in CC information to Xbox Live, so I had just been using point cards so my CC information wasn't compromised.
Garcia el Gringo
Member
I'm so salty that other people got amazing XBLA games out of their UA incident. Especially the people who only had to wait 3 or so days to get their accounts back to normal.
Anyway, I've been so relieved that my account has been free from UA for the past 5-6 months. It felt good to just get back to the games and Live service. But don't delay on that better account security, MS.
gregor7777
Banned
Still waiting for my account to be switched back from Russia, and to be able to download my purchased arcade games.
It's been 7 months now.
Had to create a new account.
Got a call from MS last week at least. Said they are still working on it. Awesome.
It's been 7 months now.
Had to create a new account.
Got a call from MS last week at least. Said they are still working on it. Awesome.
gregor7777
Banned
Aaaannnnnd, my account was switched back to the US today. LOL
7 months.
Got an email (in Russian) saying the account was switched back to the US.
Happy days. Apparently I got a few free games out of it for the PC.
7 months.
Got an email (in Russian) saying the account was switched back to the US.
Happy days. Apparently I got a few free games out of it for the PC.
Speedymanic
Banned
7 months? Christ, I hope you demanded some form of compensation.
gregor7777
Banned
Yep, 7 months.
All I got was that account region automated email. Nothing from MS reps. Just quietly fixed it.
AFAIK, there isn't anyone I can speak with that handles these things. It's just some nebulous department in the shadows that fixes it on their own time.
The free games are, I believe, what the hackers bought when the took over the account. There is two games listed that have no links and with titles like Unknown Game, that were probably games only available in Russia.
Nothing as a "I'm sorry" from MS.