Microsoft Store India Hacked

[monkey]

Received this news: Microsoft Store India Hacked

I checked my hotmail account now and I was asked by Microsoft to change the password for the same (since I have made purchases at Microsoft Store earlier). Please confirm if others have received similar notification.

 

[ineedcoupon]

**** man.. Its chinese hackers Who's next ? I guess many Indian sites need to patch up asap

 

[The Sorcerer]

Old News. WPSauce are the first one to report it and then it spread like wild fire.

 

[ico]

There is no excuse of storing passwords in plaintext.

You should file a case against them.

 

[The Sorcerer]

An impression is made that letsbuy might be doing the same in Broadband India forums, but purely based on certain indication of it.

 

[AcceleratorX]

Received this news: Microsoft Store India Hacked

I checked my hotmail account now and I was asked by Microsoft to change the password for the same (since I have made purchases at Microsoft Store earlier). Please confirm if others have received similar notification.

My account got blocked and I had to reset/change the password to get it back.

 

[Vyom]

I didn't receive any such mail, since I think I hadn't made any purchase on their online store.

Although, such news are becoming too frequent now-a-days, and is a matter of grave concern!

 

[tarey_g]

More importantly these stupid sites store the credit card info, I am having hard time removing my CC info from MS app hub. Idiots !

 

[Krow]

Plain text? Good job Microsoft team. Did not wake up even after Sony was cracked. Might as well paste a link to all credit card info on the homepage.

 

[Prime_Coder]

Storing passwords in plain-text? and that too from Microsoft? I can't believe this...

That's ridiculous really. At least they should have taken some precautions when Sony was hacked.

 

[dissel]

Got the Alert mail from them yesterday, How can I change/reset password ? There is no login page or anything in that site right now.

 

[Desmond]

God-damn!!!

Its like getting an arrow to the knee.

Looks like time for Microsoft to get better knee armour.

 

[monkey]

Got this mail today from Microsoft indicating possible credit card info leak too:

In a previous email on Feb. 12, 2012, we notified you there may have been unauthorized access to some of your customer account information on the Microsoft Store India site (Microsoft Store Online India) operated by a third party. We suggested you reset your password, among other security precautions, and to contact us with further questions.

Further detailed investigation and review of data provided by the website operator revealed that financial information may have been exposed for some Microsoft Store India customers. So, as an additional precaution, if you used a credit card on the Microsoft Store India website, we recommend the following actions:

1. Contact your credit card provider and alert them to potential unauthorized access to your account information.

2. Closely monitor and review your credit card account for abnormal activity, and if seen, immediately contact your credit card provider.

Microsoft is committed to protecting customer privacy and takes this situation very seriously. We understand that you may have additional questions, so we have set up a team of specialists to address any of your concerns. Please call them between 9 a.m. and 9 p.m. at 1-800-102-1100.

Thank you,
Chakrapani Gollapali
General Manager, Microsoft India