Psychotext
Member
I'd call them before you do anything else.
I dont think it proves much. If Microsoft also does a forced password reset, why would they do this if they arent the source of the breach?Speedymanic said:Why? If they aren't to the source of the breach, why would they need to do this? Normally, you're only forced to do this if you're worried about a security breach...
test_account said:I dont think it proves much. If Microsoft also does a forced password reset, why would they do this if they arent the source of the breach?
With the popularity of FIFA globally, and the sheer number of players playing the game online, FIFA is an obvious target for phishers and frauds, said an Electronic Arts representative to me. This is why we try to educate FIFA players to take measures to keep their accounts safe.
"We havent seen a spike or increase in reports of FIFA 12 players having their accounts hacked,"
AndyMoogle said:That's pretty big. Hopefully it means that they will add another security layer in the new dashboard update.
There's an Xbox 360 Profile Protection option on your account page that wasn't there previously. Currently doesn't work though. Probably tied to this aforementioned dashboard security update.antiquegamer said:Yeah, I always find that PR answer by EA to be really skirting around the issue. They pretty much deflect the allegation and twist words around to make it seems that it's about FIFA hack, when it's actually Xbox Live account hack.
It's really annnoying that Microsoft is not put any measure in place by now to address this issue even if the breach is not from their end they really need to do something about it. The more people speculate and the longer this problem go on, it will only look bad for them regardless of where the leak is coming from.
Yeah, but i was thinking more about the dashboard update that Microsoft is doing. And also that they have that extra security added. Does that mean that there was an issue at their side previously?Speedymanic said:Well that's kind of my point. You only do something as drastic as a password reset if a breach/something has happened that could have led to people's detailed leaking. The fact that they've also specified a date for which accounts will undergo a PW reset is also pretty suspect.
If MS had forced a password reset, it would be safe to assume that there was a breach/leaking of info on their end. I can't think of any other reason for a forced password resent.
EA seem to be trying to cover this by pretending it's for SWTOR, which makes it that much worse and pretty damn underhanded. The way EA (and MS) have handled this very from the day one has stunk. While at least MS came out and said there was no breach on their end (but failed to actually address the problem by introducing further security measures), EA didn't even bother denying a breach/leak, instead they just said that they haven't noticed an increase in any illegal activity of actual FIFA players (note, they don't go into specifics or even mention those who have never played FIFA, much like all of those in this thread and others) and tried to shift the blame to phishers/frauds.
test_account said:Yeah, but i was thinking more about the dashboard update that Microsoft is doing. And also that they have that extra security added. Does that mean that there was an issue at their side previously?
It sucks that we even have to consider this. I know I was contemplating reporting my unauthorized access and points stolen.Tonner Cyn said:As I mentioned in my post earlier, I got hacked last week. I lost some points but have not seen any other suspicious activity. I've changed my password and security question so I doubt they can get me again. I have not called MS just yet. Part of that is because I don't have a ton of time when I get home, part of it is because I know it will result in me not getting the Fall update and not being able to play MW3 online. Is there any problem in waiting? Or should I just go ahead and do it?
Santini said:Thankfully haven't been hacked, but after reading all the horror stories in this thread I wanted to take some steps to avoid waking up to someone having FIFA'd my account.
There was an old thread about credit card removal on XBL that pointed to a really useful Reddit article.
That article described how to not only turn off auto-renew but later in the discussion how to also completely remove your credit card from your XBL account (apart from MS keeping it in their own records for historical purposes).
I can confirm that the methods described still work. Auto-renew is turned off for my XBL account, and my CC has also been removed. It's pre-paid cards and codes for me from now on.
I know this won't help those of you who've already been hacked, but for those who haven't--and don't want to spend a better part of their day talking to a MS rep--maybe this will help.
tl;dr - the links above tells you how to turn off auto-renew and remove your CC from your Xbox Live account.
Psychotext said:I don't even know what the four button security pass code is.
That's what I thought...ukresistance said he had to enter it on his friends console though so I'm not 100% sure. Can anyone confirm?rayner said:It's for keeping your sibblings off of your gamertag works only on the console.
HOPE YOU ENJOY !!big_z said:
That's cute. Even if this whole hacking is MS' fault or nobody's fault but my own due to somehow getting phished, I'll still be upset with EA for their Fifa DLC. It's obviously a problem. It's the motivation for the vast majority of these thieves. How have they not fixed this issue?big_z said:
Garcia el Gringo said:That's cute. Even if this whole hacking is MS' fault or nobody's fault but my own due to somehow getting phished, I'll still be upset with EA for their Fifa DLC. It's obviously a problem. It's the motivation for the vast majority of these thieves. How have they not fixed this issue?
If EA is leaking account info in addition to their shitty exploitable DLC then I'm not going to be happy with them at all.
While i dont disagree too much with this, resetting passwords is also a way to keep things more secure At my mom's old work, there they had to change their password every month as a security messure just to mention one example. I dont know for sure if this is why Bioware does it now, but it is a possibility at least.Speedymanic said:Additional security features aren't really comparable to a forced password reset. They don't imply the same thing.
Additional security measures = trying to make a service more secure.
Forced password reset = trying to make a service secure again after a potential breach/hacking.
And the fact that they were hacked in June and are only now getting round to pushing for a password reset pretty much says it all about EA/Bioware.
Despicable behaviour from EA and MS' response to allow EA to keep running their shitty service on XBL is just as reprehensible.
I wish there was something like that in the UK. I can't see Watchdog being particularly interested (nor Microsoft caring).Zerokku said:Know what it took before It was finally done (properly)? I filed a complaint with the BBB. That got Microsoft to respond real quick
Congrats!Zerokku said:Well nearly 2 months after the hack, finally getting my last 4000 MS points refunded.
Know what it took before It was finally done (properly)? I filed a complaint with the BBB. That got Microsoft to respond real quick
-Hacke'd FIFA'd 10/15
-$125 charged to credit card, a bunch of points ($50-$100) that were already on the account.
-suspended, "under investigation"
-Have an EA account, play the same good EA games everyone does, Never touched a sports game.
-No idea if passwords were similar.
-Gamertag is about 6 years old
-no resolution after over 30 days, just filed complain with BBB
Here is what I sent to the BBB:
--begin complain file--
Nature of complaint:
On October 15th, I received emails describing two unauthorized charges to my credit card, the first for $74.99, and the second for $24.99. I received these emails because they were were made with my Microsoft user account. I soon realized that my account had been breeched, so I changed my password for the account, and contacted Microsoft about this issue. In addition to the $125 charged to my credit card, the one who hacked into my account used somewhere between $50-$100 worth of "Microsoft points" which were already deposited into the account.
The Microsoft representative explained to me that I would quickly be refunded the fraudulent $125 charged to my credit card, but that my account would be suspended for "25 days at the most." I was told that, because the hacker who had hacked into my account was based inside the US, it would probably not take very long.
Calling back later that night (10/15), I provided a different rep with some additional information they needed, some serial numbers from my console. This rep echoed many of the same comments. I provided them with an alternate email of which I was told that the investigation team would get a hold of me.
In the 30 days since, not only have I come to discover that MANY other users are experiencing the exact same problem. Most of them with the exact same amount charged to credit card ($125), all with the same motives behind the hacking (Playing a game called FIFA on other peoples accounts to spend real earth dollars on virtual trading cards), and all experiencing the same horrible customer service which seems to only want to punish the customer.
I've not once been contacted, and worse, in finally reaching out to them tonight, the Microsoft rep named Lisa actually had the nerve to insinuate that I heard wrong, at that the investigations take "AT LEAST" 25 days. As far as I can tell, from the 30-40 cases I've heard about from others online, this simply isn't true. I asked if 25 days was the minimum, what the maximum was. She responded that there wasn't one.
Last month, I was assured that, at the very least, Microsoft would refund the $125 charged to my account. Because of the insurance, I didn't file fraud charges with my bank, which would have reversed the charges immediately. Because I was assured, I'm now out $125 for a completely unknown amount of time, for something that wasn't my fault.
On top of everything, I pay $50 a year for the xbox LIVE service, which does nothing for me when my account is locked down for a completely unknown amount of time. It's probably wishful thinking that I'll ever be refunded that lost cost.
What makes me, and everyone else going through this situation so upset is that we are given zero information. To us, it makes no sense why it's taking so long to give us back our money and user accounts. Due to the nature of hacking, it's obvious we are not trying to cheat the system - the hack involves a playing a soccer game, and Microsoft can see in my entire history spanning 5 years, that not only have I not ever played a soccer game, but no sports game of any kind! I hate sports! It doesn't make sense why a bank can fix these types of fraud cases same day but Microsoft is taking months, and lying about the time it will take in the first place.
Further, Microsoft maintains that they are not at fault, that they're security has not been breeched. They can say that, as long as I can say that it's equally not my fault. I don't use bad passwords, I don't click on weird links in weird emails or in weird websites. I've never had any problem like this before in my life. I've never even had a computer virus once. If microsoft is confident that they are innocent and I am confident that I am innocent, then we obviously have an unfortunate situation. However, most unfortunate is how Microsoft is treating it's customers dealing with this.
Here is a thread on a popular message board full of people experiencing this problem.
http://www.neogaf.com/forum/showthread.php?t=451055
Desired Settlement Sought:
I would like the $125 of fraudulent charges credited back to my credit card.
I would like the $50-$100 worth of Microsoft points returned to my account balance (It's hard for me to know the exact amount that was taken, I had a large amount that was drained after the hack. The first rep I talked to on 10/15 confirmed the exact number, so Microsoft has a record of how much was taken)
I would like some reimbursement for the time that I am unable to utilize my annual $50-$60 dollar xbox LIVE service.
That's about it for monetary settlements, but also, I would like Microsoft to just be more forthcoming. During this process, I was definitely lied to by the rep called Lisa that I talked to tonight. Further, It's simply NOT REASONABLE to tell your customer, who is out around $200 and not able to use the product that they payed for, that there really is no time table for when their case will be settled. Something like this simply wouldn't be acceptable for any other business I've dealt with, and honestly I'm embarrassed for and expected more from a company like Microsoft.
-end BBB file-
4 months! FFSAptos said:Just got this all fixed after 4 months. Points have been returned and a free month was supplied.
I think he meant to say 4 weeks.Psychotext said:4 months! FFS
...and they gave you a month of free live? Niiiiiiice.