Microsoft India's Online Store Hacked; Reportedly Stored User Data In Plain Text


Vikas SN

Microsoft India's online store was hacked by a Chinese group identified as Evil Shadow, reports WPSauce (via ZDNet). Making things worse for the Redmond giant, the screenshots posted on HackTeach reveal that the company had stored both usernames and passwords in plain text, potentially exposing these credentials to the public. While the

site was down at the time of writing this post, and a google cache copy suggests that the site was indeed hacked by Evil Shadow team, it must be noted that MediaNama is unable to verify the authenticity of the database screenshot below. Also the motive behind the hack attempt is not clear, though the message left behind indicates that it was to expose the security flaw.

main page ATTRITION feedback