Belonging to a Chinese group named ‘Evil Shadow Team’, hackers hit Microsoft India’s website on Sunday night and stole the login ids and passwords of those who used the site to buy the company’s products. Post the hack, the members of the Evil Shadow Team then posted a message on the Microsoft website saying "unsafe system will be baptized".
What is surprising is the fact that hackers could violate security norms at a website that is owned by one of the leading IT companies in the world. What’s more is that all the login ids and passwords of users were stored in plain text file sans any encryption.
The company then took the website offline and users of Microsoft India are advised to change their login id and password details as soon as the site goes live again.
Earlier Lulzsec, another hacker group, conducted several high profile break-ins and posted a message on a website called Pastebin. It read as: "Do you think every hacker announces everything they've hacked? We certainly haven't, and we're damn sure others are playing the silent game. Do you feel safe with your Facebook accounts, your Google Mail accounts, your Skype accounts? What makes you think a hacker isn't silently sitting inside all of these right now," the group wrote.
Such incidents have highlighted the issue of security measures companies have in place.
A Microsoft spokesperson commenting on the breach said, "Microsoft is investigating a limited compromise of the company's online store in India. The store customers have already been sent guidance on the issue and suggested immediate actions. We are diligently working to remedy the issue and keep our customers protected."