Microsoft India's store hacked

Hacker group strikes Microsoft India's store and steals login identities and passwords. User details also not encrypted bringing IT giant's security into question.
Written by Ellyne Phneah, Contributor

Hackers strikes India's Microsoft store on Sunday, stealing login identities and passwords of customers who used the Web site for shopping.

According to a Monday report on the Times of India, the user details of the customers which were stolen from the online store, were reportedly in plain text file, without any encryption. 

The hackers allegedly belonged to a Chinese group, Evil Shadow Team.

Following the hack, the members posted on the Microsoft Web site stating "unsafe system will be baptized". The Web site has since been taken down, and at press time has yet to be restored. 

Visitors to the Web site were greeted by a message that read "The Microsoft Store India is currently unavailable. Microsoft is working to restore access as quickly as possible. We apologize for any inconvenience this may have caused".

Microsoft has yet to acknowledge or comment on the security breach, when approached by the publication.

There were numerous breaches of high-profile companies last year, conducted by hacker groups such as Lulzsec, putting focus on security measures by these companies. Sony reportedly suffered several security breaches and hackers had stolen login identities and passwords of customers from its network.

Lulzsec had also claimed the group were bringing attention to Web security, "Do you think every hacker announces everything they've hacked? We certainly haven't, and we're damn sure others are playing the silent game. Do you feel safe with your Facebook accounts, your Google Mail accounts, your Skype accounts? What makes you think a hacker isn't silently sitting inside all of these right now."

Editorial standards