Quietly and without ever admitting the problem, Microsoft has fixed the Xbox.com security loophole that allowed hackers to use brute force attack to find out Xbox LIVE usernames and passwords.
The site's front end hasn't changed but it has changed the way it processes login requests and implemented a server side mechanism that refuses logins after about 20 failed attempts.
January 18, 2012 - 3:22am