Adult friend finder exposed
Troy Hunt, an Australian data breach expert who runs the Have I Been Pwned data breach notification site, says that at first glance some of the data appears legitimate, but it's still early to make a call. "I'd need to see a complete data set to make an emphatic call on it." If the data is accurate, it would mark one of the largest data breaches of the year behind Yahoo, which in October blamed state-sponsored hackers for compromising at least 500 million accounts in late 2014 (see Massive Yahoo Data Breach Shatters Records).
It also would be the second one to affect Friend Finder Networks in as many years.
It could also be particularly worrisome because Leaked Source says the accounts date back 20 years, a time in the early commercial web when users were less worried about privacy issues.
Notably, the database does not include more detailed personal information, but could still be used to confirm whether a person was a user of the service.The hack also revealed that the company had kept information on 15 million accounts that users had deleted, as well as information on users for assets it no longer owned, such as Penthouse.By comparison, the Ashley Madison hack that took place in July 2015 revealed 32 million accounts, although that attack was also accompanied by a more aggressive extortion campaign.In May 2015 it was revealed that 3.9 million Adult Friend Finder accounts had been stolen by a hacker nicknamed ROR[RG] (see Dating Website Breach Spills Secrets).The alleged leak is likely to cause panic among users who created accounts on Friend Finder Network properties, which primarily are adult-themed dating/fling websites, and those run by subsidiary Steamray Inc., which specializes in nude model webcam streaming.