Why the AdultFriendFinder hack places more than just 420M usernames at risk

It’s the Ashley Madison hack all over again. Except this time, the fallout may be much greater.

More than 400 million accounts have been exposed by a hack into FriendFinder Networks’ plethora of adult dating and pornography sites. AdultFriendFinder, marketed as the “world’s largest sex and swinger community”, is the primary target with 340 million users exposed. Popular sites including Penthouse.com were also affected.

The hack was first reported by LeakedSource, a breach notification Web site that specializes in bringing hacking incidents to the public eye, who is reporting this as the largest hack in history, surpassing the MySpace hack of 360 million. Hackers gained access to the network through a local file inclusion exploit. This is the second hack into the network over the last two years.

FriendFinder Networks has yet to confirm the hack, however a representative did confirm to The Washington Post that the company is investigating the situation.

“Immediately upon learning this information, we took several steps to review the situation and bring in the right external partners to support our investigation,” the company said.

AdultFriendFinder has nearly 20 years of data including information like usernames, emails, join dates, passwords, and the date of a user’s last visit. The Ashley Madison hack fallout may pale in comparison to the information leaked here. The 412 million accounts exposed is more than 12 times the 32 million Ashley Madison accounts.

Ryan Wilson
Ryan Wilson

Ryan Wilson, CTO of Toronto-based CDN Top 100 Solution Provider Scalar Decisions Inc. spoke with ITBusiness.ca and warned about additional fallout to other Web sites that may occur because of this hack.

“We need to consider is that a lot of Internet users will use the same email address and password for multiple sites. So these sort of attacks aren’t just directed at Adult Friend Finder for example, it may have ripple effects into other online services and accounts,” Wilson said.

So far, leaked account details include 78,301 U.S. military email addresses, 5,650 U.S. government email addresses, and over 96 million hotmail accounts. 52 million U.K. addresses were leaked as well, including seven gov.uk email addresses, 1,119 from the Ministry of Defense, and 12 from parliament according to Telegraph.co.uk. The Web site is also reporting 54 U.K. police email addresses, and 2,028 from U.K. schools.

Would you recommend this article?


Thanks for taking the time to let us know what you think of this article!
We'd love to hear your opinion about this or any other story you read in our publication.

Jim Love, Chief Content Officer, IT World Canada

Featured Download

Alex Radu
Alex Raduhttp://www.computerdealernews.com
is a Video Producer for IT World Canada. When not writing or making videos about the tech industry, you can find him reading, watching TV/movies, or watching the Lakers rebuild with one eye open.

Featured Story

How the CTO can Maintain Cloud Momentum Across the Enterprise

Embracing cloud is easy for some individuals. But embedding widespread cloud adoption at the enterprise level is...

Related Tech News

Get ITBusiness Delivered

Our experienced team of journalists brings you engaging content targeted to IT professionals and line-of-business executives delivered directly to your inbox.

Featured Tech Jobs