Apparently, this precocious youngster, Kristoffer Von Hassel, from San Diego, discovered how to log in to MS Live accounts without a valid password, on Dad's Xbox.
It was a .... complicated .... hack.
When asked for a password, provide an invalid one. When subsequently asked for verification, fill field in with blanks.
Result? Access.
Well, aside from this intrepid junior hacker being acknowledged by what is no doubt a red-faced MS, what does it say about MS security, especially in the days of MS "accounts" and multiple device sync'ing, that MS programmers could be so rampantly incompetent?
And what does it say for the principle of cloud-syncing files, or passwords, or even settings?
I mean, hat's off to junior for his determination and all, but MS? Really? You morons. Muppets. Idiots.
Source : BBC