Microsoft, one of the biggest IT companies in the world is facing security issue after it's users information was breached by hackers. The Hackers group allegedly called Evil Shadow Team from China, hacked the Microsoft's India Store website microsoftstore.co.in, and posted a message on the website saying "unsafe system will be baptizedon".
After the theft event, the website was suspended by the company. Company's spokesperson said,
Microsoft is investigating a limited compromise of the company's online store in India. The store customers have already been sent guidance on the issue and suggested immediate actions. We are diligently working to remedy the issue and keep our customers protected.
The web store was using plain text to store user details and there was not any encryption, so it was very easy to gain all the information. If you are one of the users of the store, your login id and password may be exposed to them.
Microsoft itself is less culpable here because the online store is not managed by the company, but by a third-party service provider. I can't imagine, how a tech-company can store login data without any encryption. It just shows there security negligence. Whatever be the case, ultimately users are now in trouble.
We advise all users at Microsoft India Store to change their login credentials as soon the website start working. Also, if they have used the same login id/e-mail and password on any other online service, they should change it immediately.