Awards site security breach leaves the email addresses, gamertags, names and birthdays of voters exposed.
Microsoft has taken its Xbox Entertainment Awards 2013 site offline after a security breach left personal information of its 2,892 entrants available for all to see. Not only was information including gamertags, names and email addresses made visible, but vistors to the site could also edit the listings to change or remove votes.
The Awards, which went live on Monday, asked fans to vote for their favourite products across a range of entertainment genres, from film to TV to games. Everyone who voted was to be entered into a prize draw to win an array of goodies including Xbox 360 consoles and gold membership for Xbox Live. Those who voted via Xbox Live itself were to be entered into a sweepstake to go to Gamescom 2013 as a VIP.
MCV posted a blurred out screengrab of the security leak, and was told by Microsoft, “We are currently experiencing technical difficulties with the Xbox Entertainment Awards landing page and have taken the site offline while we investigate.” in a delightful bit of PR understatement.
The site is currently still offline. Hopefully, more information will be forthcoming once it’s restored, including what might happen to entrants who’ve had their votes tampered with.