The Adult Friend Finder service has been hacked and millions of accounts have been leaked on the Internet. Learn more about the incident below.
Massive Adult Friend Finder Breach
A massive hacker breach has exposed more than 412 million accounts from the online adult dating network Friend Finder. This includes more than 339 million accounts from the largest site – Adult Friend Finder, which is described as the “world’s largest sex and swinger community”.
According to our sources this includes more than 15 million deleted accounts which were not purged from the databases which by itself is a big security risk.
Other targets that were compromised include Cams.com (63 million accounts) and Penthouse.com (7 million accounts) among other smaller assets that are owned by the parent network. The breach has occurred after a security researcher known as Revolver had disclosed a software vulnerability due to a local file flaw. This is probably the reason the attackers have gained access to the servers.
However the researcher has denied to be behind the attack campaign and has blamed hackers operating on a Russian underground network. This is actually the second attack that has happened in recent years. Last year Friend Finder Networks were breached which resulted in a leak of 4 million accounts. The data breach contained sensitive information of the users with detailed data about their sexual preferences and such.
Several popular web portals have obtain portions of the leaked databases. The three largest data sets include information such as usernames, email addresses, date of the last visit and their passwords which were stored in plaintext or scrambled with SHA-1 hashing which is not deemed secure. Other relevant information includes site membership data – VIP membership status, browser information, item payment information and their IP addresses.
The database holders have stated that they were able to crack 99% of all passwords that are stored in the sets. Security checks verify that the data sets belong to actual users. The company has confirmed that the site was vulnerable to security exploits however they did not state that a breach has occurred.
According to various reports Adult Friend Finder has received numerous reports about potential security vulnerabilities from different sources. The incident is under an active investigation. The company will give out more details once the security inspection learns of the outcome and the circumstances of the hack.
As for everyone else, this just another attack that targets online dating sites.