Check Your Xbox Live Password Today

Check Your Xbox Live Password Today
To sign up for our daily newsletter covering the latest news, features and reviews, head HERE. For a running feed of all our stories, follow us on Twitter HERE. Or you can bookmark the Kotaku Australia homepage to visit whenever you need a news fix.

The general manager for Xbox Live today told gamers of the more aggressive steps the service was taking to combat online fraud and phishing scams — like those that have recently generated a wave of bad publicity — while reminding everyone to take some steps that would make that job a lot easier.

In a post on the official Xbox blog, Alex Garden said Xbox Live has pursued legal action against online sites posting containing gamertags, usernames and passwords that criminals have used to break into and loot accounts. Purchases or account changes are being verified with security codes sent to mobile phones or to secondary email addresses, if the changes are made from an unfamiliar device. And, Garden pointedly reminded that not just sellers, but buyers “of known stolen accounts and content” face account and console bans, if not the risk of criminal prosecution.

All that said, “I encourage everyone to take five minutes today to check your security information and update it if necessary,” Garden writes. “If you have any lost or stolen security proofs, update them now to prevent any interruptions to your Xbox Live service in the future.”

The single most helpful step, Garden suggests, is making sure your Xbox Live password is different from that used to access other online services. “Sadly, ‘password’ and ‘12345’ are still top of the most common password lists when we see breaches occur and passwords posted online,” he writes.

Food for thought. In the US, fire safety officials use the change over from standard time to daylight saving time to remind everyone to check the batteries in their smoke detectors. It might be a good thing for some authority to designate a similar day for revisiting password security in all the accounts you most often use. For now, Xbox Live subscribers can start with July 18.

Take 5: Update Your Security Info Today [Xbox Live Blog]


  • Hint: a long simple phrase password is more secure and easier to remember than a short, complex one. Anything 8 characters or less can be easily broken brute-force if someone gets access to the hashed password.

  • Use a password manager and get it to randomly generate a 16-20 character password for all your accounts. It’s little bit of a bitch to enter it in via the Xbox 360 interface, but it’s one of the best ways to ensure that you have done everything you can to protect all your accounts. Some managers have mobile apps to allow you to see the passwords in plain text , but you need make sure to lock those down like a mo-fo. Mine has to go through 3 security checks just to get to to the passwords and required re-auth after a few minutes.

  • good step for xbox live is on the console itself you can add a button combination to your account, For example mine,
    I turn on hit connect to xbox live, then I get prompted to enter 4 button presses in the combination I set..
    the how to: It does not help when logging into xbox live account from anything not an xbox, but its pretty dam handy.

  • Make words, but throw a little 13375p34k in there.


    You’d be surprised how strong that short password is.
    (And no, that’s not mine.)

  • Can also still write words, but substitute symbols and numbers for letters.

    4 a
    3 e
    1 i
    | l
    0 o
    $ s
    7 t

    For example. Substitute your own.

  • 12345? People really use a password of 12345. That’s the kind of combination an Idiot would have on his Luggage. Or the King of Druidia on his Air Shield.

  • The fact that they offer Two-Factor Authentication is great, but I wish that would offer 2FA across all the product lines so you can enter any MS account by telesigning in.

Show more comments

Log in to comment on this story!