quote:
Originally posted by Chris.
I think it may be due to a very convincing phishing website, not a actual result of the passwords being "leaked" from Microsoft's servers. As i'm sure Microsoft would store all users passwords in hashs (i.e. md5) in there databases.
I don't know about now, however I know that in the past, passport user ids were stored in either plain text, or some sort of reversible encrypted format. One of the support tools given to trusted support engineers had the ability to see the password on a given account.
/ 
