Microsoft Store India has come under attack by hackers raiding under the banner of ‘Evil Shadow Team’. The website was defaced yesterday with the above image replacing access, which was achieved by redirecting visitors to a file the team uploaded — evil.html. The message is clear from the attack: “Unsafe system will be baptized.”
For now the website is offline, presumably while Microsoft investigates what exactly went wrong and suggesting the software giant has regained control.
“The Microsoft Store India is currently unavailable. Microsoft is working to restore access as quickly as possible. We apologise for any inconvenience this may have caused.”
Customers of the online store have been strongly urged to change their passwords once the site comes back online as Quasar Media, the online marketing agency that maintains the website, decided it would be a great idea to store user credentials and personal information in plain text – an obvious insecure practice.
While one could argue that it’s in the interest of the customers to know that their details are not being stored securely, another could counter with stating that the attack, which has no known motive, was not required.