AdultFriendFinder, a website that uses the tag line “Hookup, Find Sex or Meet Someone Special Now,” has been breached for the second time in two years. In one of the biggest Internet security breaches ever, 339 million user accounts from the site have reportedly been compromised.
AdultFriendFinder’s parent site Friend Finder Networks, which offers various adult entertainment services, was hacked last month due to Local File Inclusion vulnerabilities as per a researcher who goes by the name ‘1×0123’ on Twitter, reports CSO online. The researcher went on to post images to show the vulnerability in Local File Inclusion being triggered. As per the report, the researcher has confirmed that the vulnerability has been exploited and was found in AdultFriendFinder’s production server module.
The other websites owned by Friend Finder Networks include Cams.com, Penthouse.com, Stripshow.com, iCams.com, and an unknown domain. As per the data from Leaked Source, Cams.com has a total of around 62 million user accounts while Penthouse.com has around 7 million user accounts. Stripshow and iCams both have around 1 million user accounts registered.
Due to this breach, a total of 412 million user accounts have been put at risk by the company. The total data that has been put at risk due to this hack has been collected by the various sites over last 20 years.
Sensitive details like usernames and passwords are already accessible for many user accounts and ZDNet has even confirmed that some of the account data leaked was authentic.
Shocking as it may be, this is not the first time that data from AdultFriendFinder has been breached as last year in May, data of around 3.9 million users was leaked by hackers, as per an investigation by Britain’s Channel 4.
Last year, online dating website for cheating spouses – Ashley Madison, was breached by hackers who threatened to leak the personal details of 37 million of the site’s users unless the website was shut down.