Breaking News: Microsoft India’s web store being hacked by a group calling itself Chinese Evil Shadow Team. The hacker team is seems a two-man team, who also managed to upload a page to deface the site and put a new face on Windows products, revealed that user passwords were saved in plain text.
The store is now offline, and site is not run by Microsoft, but Quasar Media, an Indian company responsible for its maintenance and operation. The company has confirmed the attack, and sent out defensive emails to members. That credit card details and payment information databases were not affected, however, other data may have been exposed, such as order details, and shipping addresses, apart from usernames, e-mail addresses, and passwords.
The hackers appear to have uploaded a file called evil. In Html, which says “Unsafe system will be baptized”. Things got bad when Hacker posted screenshots of the user database see below its screen shot:
msft db 01 Microsoft India Web Store Hacked in Plain Text Document
Microsoft will be sending an email with a temporary password and a prompt to create a new password. Users who receive the e-mail are requested to immediately create a new password.
The store is now offline, and site is not run by Microsoft, but Quasar Media, an Indian company responsible for its maintenance and operation. The company has confirmed the attack, and sent out defensive emails to members. That credit card details and payment information databases were not affected, however, other data may have been exposed, such as order details, and shipping addresses, apart from usernames, e-mail addresses, and passwords.
The hackers appear to have uploaded a file called evil. In Html, which says “Unsafe system will be baptized”. Things got bad when Hacker posted screenshots of the user database see below its screen shot:
msft db 01 Microsoft India Web Store Hacked in Plain Text Document
Microsoft will be sending an email with a temporary password and a prompt to create a new password. Users who receive the e-mail are requested to immediately create a new password.
Microsoft will be sending an email with a temporary password and a prompt to create a new password. Users who receive the e-mail are requested to immediately create a new password.
No comments:
Post a Comment