Phishing scam steals passwords, identities of Xbox Live users

A recent phishing scam was able to leverage weak passwords for financial gain at the expense of Xbox Live users, according to a recent report from The Sun.

The scam is a prime example of the pitfalls of weak password management. According to the report, the victims received fraudulent emails that claimed to offer free Microsoft points to purchase games through Xbox Live. In order to receive the points, the report said, Xbox Live users were prompted to submit personal information, which was then exploited by identity thieves.

The scam was relatively wide-reaching and surprisingly successful, affecting gamers in 35 different countries. Microsoft has stepped up in relief, promising reparations to those who didn't submit their user names and credentials, according to a Gamers Hub report. However, the company is providing no relief to those guilty of poor password practices, reiterating the value of password manager software.

Gamers in general have been targeted quite frequently this year. First making headlines was the hack of Sony's PlayStation network, in which more than 100 million users were estimated to be at risk of identity theft. Other recent examples include the hack of the Steam gaming network and South Korea's Nexon.