Hacked records connected to AdultFriendFinder.com, Cams.com, iCams.com, Stripshow.com, and Penthouse.com
Six databases from FriendFinder Networks Inc., the organization behind a few of the world’s biggest adult-oriented websites that are social have already been circulating online because they were compromised in October.
LeakedSource, a breach notification site, disclosed the event completely on and said the six compromised databases exposed 412,214,295 accounts, with the bulk of them coming from AdultFriendFinder.com sunday
It’s believed the incident occurred just before October 20, 2016, as timestamps on some documents suggest a final login of october 17. This schedule can be notably verified by the way the FriendFinder Networks episode played down.
On October 18, 2016, a researcher whom goes on the handle 1×0123 on Twitter, warned Adult FriendFinder about Local File Inclusion (LFI) vulnerabilities on their site, and posted screenshots as evidence.
When asked straight in regards to the problem, 1×0123, who’s http://www.hookupdates.net/kasidie-review additionally understood in a few sectors because of the title Revolver, stated the LFI had been found in a module on AdultFriendFinder’s production servers.
Maybe maybe maybe maybe Not even after he disclosed the LFI, Revolver reported on Twitter the presssing issue ended up being fixed, and “. no consumer information ever left their web web site.”
Their account on Twitter has since been suspended, but at that time he made those responses, Diana Lynn Ballou, FriendFinder Networks’ VP and Senior Counsel of business Compliance & Litigation, directed Salted Hash in their mind as a result to follow-up questions regarding the event.
On October 20, 2016, Salted Hash ended up being the first ever to report FriendFinder Networks had most likely been compromised despite Revolver’s claims, exposing a lot more than 100 million reports.
As well as the leaked databases, the presence of supply rule from FriendFinder Networks’ manufacturing environment, aswell as leaked public / private key-pairs, further put into the mounting proof the business had experienced a severe information breach. Continue reading
