BreachExchange mailing list archives
Microsoft India's Online Store Hacked; Reportedly Stored User Data In Plain Text
From: security curmudgeon <jericho () attrition org>
Date: Mon, 13 Feb 2012 02:11:55 -0600 (CST)
http://www.medianama.com/2012/02/223-microsoft-indias-online-store-hacked-reportedly-stored-user-data-in-plain-text/ Microsoft India's Online Store Hacked; Reportedly Stored User Data In Plain Text By Vikas SN on Feb 13th, 2012 Microsoft India.s online store was hacked by a Chinese group identified as Evil Shadow, reports WPSauce (via ZDNet). Making things worse for the Redmond giant, the screenshots posted on HackTeach reveal that the company had stored both usernames and passwords in plain text, potentially exposing these credentials to the public. While the site was down at the time of writing this post, and a google cache copy suggests that the site was indeed hacked by Evil Shadow team, it must be noted that MediaNama is unable to verify the authenticity of the database screenshot below. Also the motive behind the hack attempt is not clear, though the message left behind indicates that it was to expose the security flaw. [..] _______________________________________________ Dataloss-discuss Mailing List (dataloss-discuss () datalossdb org) Archived at http://seclists.org/dataloss/ Unsubscribe at http://datalossdb.org/mailing_list Small, inexpensive USB drives pose huge threats to organizations left unprotected. Download Chapter 1 of CREDANT Technologies eBook Data Protection to the Rescue http://www.credant.com/campaigns/external_media_ebook/chapter1/lp/
Current thread:
- Microsoft India's Online Store Hacked; Reportedly Stored User Data In Plain Text security curmudgeon (Feb 13)