My Microsoft AdCenter account has been hacked and a bill of £400 run up for a short campaign pointing to http://alloads.info/yahoo-messenger/. Interestingly, the problem was first identified by my credit card company, who promptly declined the unusual payments coming from Microsoft in the US.

So how did this happen? Microsoft claim my username was used to access to account when the rogue campaign. I’m pretty careful with access so I believe it must have been some form of cross side script or it’s an internal hack. Microsoft are currently investigating so I’ll share the results when they get back to me.

Tweet