14 DAY TRIAL // Microsoft confirmed that the official online store from India has been breached, the issue being currently investigated by the company.
“Microsoft is investigating the limited compromise of the company’s online store in India. Customers have been notified and provided with guidance to reset their passwords. We are diligently working to remedy the incident and keep our customers protected,” a Microsoft spokesperson told SecurityWeek.
A Chinese hacker known by the name of 7z1, part of the Evil Shadow Team took credit for the hack as a result of which it has been revealed that the online store kept all the data, including passwords, in clear text.
We've contacted the hacker and he says that even though he is a black hat, the purpose of the breach wasn’t to cause any damage, especially since the information he found has no value for him or his team.
He claims that the main purpose of the hack was to determine the site’s administrators to patch up the security flaws.
At the time of writing, the Microsoft Store is not restored, displaying a “currently unavailable” message.