Microsoft India's Online Store Hacked; Reportedly Stored User Data In Plain Text

[security curmudgeon <jericho () attrition org>]

http://www.medianama.com/2012/02/223-microsoft-indias-online-store-hacked-reportedly-stored-user-data-in-plain-text/

Microsoft India's Online Store Hacked; Reportedly Stored User Data In Plain Text
By Vikas SN on Feb 13th, 2012

Microsoft India.s online store was hacked by a Chinese group identified as 
Evil Shadow, reports WPSauce (via ZDNet). Making things worse for the 
Redmond giant, the screenshots posted on HackTeach reveal that the company 
had stored both usernames and passwords in plain text, potentially 
exposing these credentials to the public. While the site was down at the 
time of writing this post, and a google cache copy suggests that the site 
was indeed hacked by Evil Shadow team, it must be noted that MediaNama is 
unable to verify the authenticity of the database screenshot below. Also 
the motive behind the hack attempt is not clear, though the message left 
behind indicates that it was to expose the security flaw.

[..]
_______________________________________________
Dataloss-discuss Mailing List (dataloss-discuss () datalossdb org)
Archived at http://seclists.org/dataloss/
Unsubscribe at http://datalossdb.org/mailing_list

Small, inexpensive USB drives pose huge threats to organizations left unprotected. 
Download Chapter 1 of CREDANT Technologies eBook
Data Protection to the Rescue
http://www.credant.com/campaigns/external_media_ebook/chapter1/lp/