Anyone managed to get a compromised XBox account back ?

Crabby

Crabby

Honorary Master
Joined
Jun 30, 2005
Messages
11,040
Reaction score
198
Location
CT
Hi gamers

Just checking if anyone has managed to get a compromised XBox account back ?

Lost steam, discord, apple and xbox all on the same weekend while I was moving house. Got steam, discord and apple back within the week, but really want my 15yr xbox account back an MS are being cnuts about it.

Xbox alias was altered, recovery options nuked, phone removed etc. Of course GamePass is still coming off since I can't get into the account to remove it.

You fill in the online recover form, MS replies and says yes, your account is compromised, please create a new one.

Any suggestions welcome.
 
Yeah. Not gonna happen

Same issue with my son's pc which he compromised

Was able to recover all accounts except Microsoft. Their bot website wont allow it, and just says sorry and bye
 
Crabby said:
Hi gamers

Just checking if anyone has managed to get a compromised XBox account back ?

Lost steam, discord, apple and xbox all on the same weekend while I was moving house. Got steam, discord and apple back within the week, but really want my 15yr xbox account back an MS are being cnuts about it.

Xbox alias was altered, recovery options nuked, phone removed etc. Of course GamePass is still coming off since I can't get into the account to remove it.

You fill in the online recover form, MS replies and says yes, your account is compromised, please create a new one.

Any suggestions welcome.
Click to expand...

How did you get all of them compromised on the same weekend?

Asking for educational purpose.

On Topic: Yeah no, not gonna happen. Only way that is ever gonna happen is if it was part of a corporate account, where you could ask the local IT admin to reset.
 
Crabby said:
Hi gamers

Just checking if anyone has managed to get a compromised XBox account back ?

Lost steam, discord, apple and xbox all on the same weekend while I was moving house. Got steam, discord and apple back within the week, but really want my 15yr xbox account back an MS are being cnuts about it.

Xbox alias was altered, recovery options nuked, phone removed etc. Of course GamePass is still coming off since I can't get into the account to remove it.

You fill in the online recover form, MS replies and says yes, your account is compromised, please create a new one.

Any suggestions welcome.
Click to expand...
Did they even manage it with 2fa enabled on the account?

You can try and contact a live support agent, will probably need to create a temp account.
 
AlphaJohn said:
How did you get all of them compromised on the same weekend?

Asking for educational purpose.

On Topic: Yeah no, not gonna happen. Only way that is ever gonna happen is if it was part of a corporate account, where you could ask the local IT admin to reset.
Click to expand...

Apparently a known data breach. Those accounts I've had for years, and I think all of them had the same pwd, and never had 2FA turned on as that only came about in the past few years and I never updated.

I was moving that week and only noticed when I got an SMS to say my phone had been removed from the MS account. By that stage, I had already been delinked and email updated.

It's crazy that other massive companies use humans that can see the hack and have corrected the issue, but MS using AI just laughs at you.

Anyways, got my Epic and Ubisoft linked accounts back, so my next step is to trade my Xbox in for a PS.
 
Carl_Johnson said:
Always use virtual card to sign up for these types of subscriptions. That way in an instance like this you can just delete the card and you wont lose anymore cash.
Click to expand...
Yeah, that will happen for next subscription, my GamePass subscription has been around since before virtual cards, never thought to update it.
 
VooDooC said:
Did they even manage it with 2fa enabled on the account?

You can try and contact a live support agent, will probably need to create a temp account.
Click to expand...
I never had 2FA at the time.

I did get through to a human after I logged a call for fraud/refund. Gave them some details and they were happy to take my card details off the account, but not give me the account back, seems counter intuitive to me.
 
So crazy thing is I had the same happen a few weekends ago, started getting password reset otp emails which got deleted almost immediately for my Steam, EA Games, Rockstar, Ubisoft etc. accounts. I have and had 2fa enabled on all the accounts that is a 2fa app and not email etc. They still managed to get in, changed some details like avatars etc, tried buying GTA V as a gift for someone on Steam (failed because my card details were outdated on there). This carried on for about 2 weeks randomly every couple of days, reset passwords etc each time and then it just stopped. I was lucky to get all my accounts back and never lost access to my Microsoft account.
 
Crabby said:
Anyways, got my Epic and Ubisoft linked accounts back, so my next step is to trade my Xbox in for a PS.
Click to expand...

Yeah, well good luck with that.
I lost a NZ PlayStation account cause I forgot my Password and had no access to the email address it was registered to. Even worse this was after I got hold of a human.

So they basically same in that regard. One its lost its bye bye games.

Note I am not saying one is good or bad (ie: Flame war) just saying the all the same.
 
Stefan.dl said:
So crazy thing is I had the same happen a few weekends ago, started getting password reset otp emails which got deleted almost immediately for my Steam, EA Games, Rockstar, Ubisoft etc. accounts. I have and had 2fa enabled on all the accounts that is a 2fa app and not email etc. They still managed to get in, changed some details like avatars etc, tried buying GTA V as a gift for someone on Steam (failed because my card details were outdated on there). This carried on for about 2 weeks randomly every couple of days, reset passwords etc each time and then it just stopped. I was lucky to get all my accounts back and never lost access to my Microsoft account.
Click to expand...
Likely to be more prevalent with AI getting better and faster at sniffing out loopholes. That said I was lax in my own security, probably still am.

It just seems like nobody cares much either way. My apple account was actually my old one, not used in years so had no billing info on it. A week or so after the hack, guy added billing info to the account and proceeded to buy around 30+ TileSurvive packages, some of them $80+

Contacted apple again, got a human, he was like, so its an unused account and not your billing info stolen, leave it, not your problem.

I know it's not my problem, but I'd like to think someone cares that money is being stolen.

I tracked down TileSurvive on Discord, logged a ticket, got routed to dev support directly, told them this account was hacked, and whatever billing is being used is fraudulent. Sent emails, screenshots with the apple support etc, the support guy was like 'not our problem' contact apple.

Gave up after that.
 
AlphaJohn said:
Yeah, well good luck with that.
I lost a NZ PlayStation account cause I forgot my Password and had no access to the email address it was registered to. Even worse this was after I got hold of a human.

So they basically same in that regard. One its lost its bye bye games.

Note I am not saying one is good or bad (ie: Flame war) just saying the all the same.
Click to expand...
Then its time to look into the Steam Box I suppose if the console guys are both useless.
 
Crabby said:
Contacted apple again, got a human, he was like, so its an unused account and not your billing info stolen, leave it, not your problem
Click to expand...
How did you manage to actually chat with a Human at Apple, I thought that was near impossible?
 
If you have any purchases and the receipts thereof, you have a chance.

Just for warning. Microsoft nuked my old Microsoft account after criminals got their way into it via my old Webmail account and then used it to recover my then Microsoft account. After months of investigation by Microsoft, they deemed my account breached, and suspended it indefinitely. I wasn't given any choice in the matter. They didn't give a toss about everything I had purchased on that account, including Windows and Office, amongst other Store items. Even though that was done, my then Skype account was continuely used to scam people. I was simply muted by Microsoft. If my mail was continued to be abused, I dunno.

That one incident changed my entire perception of their company. This was years ago though, 2017 I think.

Don't get me started on Webmail. I emailed them about the breach from another account, and they simply reset my password without question... Hmmm.
 
airborne said:
How did you manage to actually chat with a Human at Apple, I thought that was near impossible?
Click to expand...
+27800444426

Direct support line, can't recall but mentioned hacked and spent just over an hour on the phone before he gave up.
 
Fulcrum29 said:
If you have any purchases and the receipts thereof, you have a chance.

Just for warning. Microsoft nuked my old Microsoft account after criminals got their way into it via my old Webmail account and then used it to recover my then Microsoft account. After months of investigation by Microsoft, they deemed my account breached, and suspended it indefinitely. I wasn't given any choice in the matter. They didn't give a toss about everything I had purchased on that account, including Windows and Office, amongst other Store items. Even though that was done, my then Skype account was continuely used to scam people. I was simply muted by Microsoft. If my mail was continued to be abused, I dunno.

That one incident changed my entire perception of their company. This was years ago though, 2017 I think.

Don't get me started on Webmail. I emailed them about the breach from another account, and they simply reset my password without question... Hmmm.
Click to expand...
Got the receipts in spades, can name my last purchase and date, the teen wanted to play Lego Hobbit. The account is 15+yrs old. Never changed gamertag, emails or phone. Bank cards changed along with xboxes as they died, they have my current bank details. Not hard to confirm whoever is paying for the account owns it rather than some chinese dude in Shanghai FFS.

Getting hold of a human is the issue, I fill their recovery form in daily and still receive the same response after a month.
They confirm it was hacked but simply choose to do fack about it.

"At Microsoft, safeguarding your account is a top priority. We have thoroughly investigated the account and billing activity associated with your Microsoft account. Based on this review, we’ve confirmed that unauthorized access occurred.

During the investigation, we discovered that the security information on your account had been changed. Due to our strict security protocols and the terms outlined in the Microsoft Services Agreement, we are unable to modify or restore the security settings once they’ve been updated.

If you used this account for Minecraft, we regret to inform you that the game cannot be recovered. A new purchase will be required on a newly created account. We understand this may be disappointing and sincerely apologize for the inconvenience.

Additionally, if you had files stored in OneDrive, those files are no longer accessible. Due to encryption and privacy safeguards, even our engineers cannot retrieve them. While this outcome may not be ideal, it is necessary to ensure your personal data does not fall into the wrong hands.

We recommend that you create a new account. Thank you for your understanding and patience during the investigation of your account.

Sincerely,

Microsoft Customer Support"
 
Crabby said:
Got the receipts in spades, can name my last purchase and date, the teen wanted to play Lego Hobbit. The account is 15+yrs old. Never changed gamertag, emails or phone. Bank cards changed along with xboxes as they died, they have my current bank details. Not hard to confirm whoever is paying for the account owns it rather than some chinese dude in Shanghai FFS.

Getting hold of a human is the issue, I fill their recovery form in daily and still receive the same response after a month.
They confirm it was hacked but simply choose to do fack about it.

"At Microsoft, safeguarding your account is a top priority. We have thoroughly investigated the account and billing activity associated with your Microsoft account. Based on this review, we’ve confirmed that unauthorized access occurred.

During the investigation, we discovered that the security information on your account had been changed. Due to our strict security protocols and the terms outlined in the Microsoft Services Agreement, we are unable to modify or restore the security settings once they’ve been updated.

If you used this account for Minecraft, we regret to inform you that the game cannot be recovered. A new purchase will be required on a newly created account. We understand this may be disappointing and sincerely apologize for the inconvenience.

Additionally, if you had files stored in OneDrive, those files are no longer accessible. Due to encryption and privacy safeguards, even our engineers cannot retrieve them. While this outcome may not be ideal, it is necessary to ensure your personal data does not fall into the wrong hands.

We recommend that you create a new account. Thank you for your understanding and patience during the investigation of your account.

Sincerely,

Microsoft Customer Support"
Click to expand...

Basically the same way they handled my old account. It is crazy though, and a bad policy at it. Odd that they didn't inform you of the account being suspended. After a couple of years they allow a suspended account to be re-registered if the username haven't already been taken. I can understand their position if there were no financial transactions; however, it is very unfair of them to block you from an account with which you have engaged in transactions within their ecosystem. I haunted them for a while on their live chat, but then they just stopped addressing anything related to that account.

There is no understanding of the matter.

Google is no different nowadays from what I have heard. Steam has a good process, but there is an onus on your part to keep history of your transactions. Usually they can refer to any historical purchase, and you need to provide proof, whether it is a game/voucher code, receipt, or anything that can prove ownership of that transaction. You just don't see this from everyone, even Blizzard, EA, and Ubisoft are helpful in such events.
 
AlphaJohn said:
Yeah, well good luck with that.
I lost a NZ PlayStation account cause I forgot my Password and had no access to the email address it was registered to. Even worse this was after I got hold of a human.

So they basically same in that regard. One its lost its bye bye games.

Note I am not saying one is good or bad (ie: Flame war) just saying the all the same.
Click to expand...

So you didn't have the one thing that they could use to verify your account i.e. email account? What did you expect them to do - just take your word for it?
 
You must log in or register to reply here.
Back
Top
Sign up to the MyBroadband newsletter
X