Adult friend finder mobile nude dating sex
The suggestion of a security flaw first came from self-styled "underground researcher" 1x0123 on Tuesday night, who posted on Twitter a screen grab that suggested Adult Friend Finder has a Local File Inclusion (LFI) vulnerability.
Researcher 1x0123 wrote: "F**kload of databases with same user/password runing as root".
Hackers reportedly breached Friend Finder Networks last month, and gained access to over 300 million accounts on Adult Friend Finder, which markets itself as the “World’s largest sex & swinger community.” The hack also exposed over 62 million accounts on Cams.com, a site for live webcam “sex chat,” over 7 million on Penthouse.com, over 1.4 million on Stripshow.com, over 1.1 million on i and a little over 35,000 on an “unknown domain.” Friend Finder’s network was reportedly hacked through a local file inclusion exploit, which enabled the hackers to access all of the network’s sites.
Under the Friend Finder Network exists numerous adult websites of which Adult Friend Finder . Combined, these websites contain over 412 million past and present users, all affected by the latest hack. com, the Friend Finder Network includes numerous adult-oriented “hookup” websites which include What's often not highlighted in these cases is the monetary value of such a breach.Many would argue that having an email address and the associated data might be of little value.“Over the past several weeks, Friend Finder has received a number of reports regarding potential security vulnerabilities from a variety of sources,” Friend Finder Networks Vice President and Senior Counsel Diana Ballou told ZDNet.
“Immediately upon learning this information, we took several steps to review the situation and bring in the right external partners to support our investigation.” Some of the claims were false extortion attempts, Ballou said, but the company “did identify and fix a vulnerability that was related to the ability to access source code through an injection vulnerability.” I’ve reached out to Friend Finder and will update this story if I hear back.The professional nature of many of the email addresses found in the Ashley Madison hack (.gov, .mil, etc.) should have served as a wakeup call for users engaging in this behavior, however with the professional emails contained in this breach seems to show that people are still using work accounts for questionable activity.We’ve seen this situation many times before and it likely means these were users who tried to delete their account but the data is obviously still kept around because you know, we’re looking at it.The scenario is highly reminiscent of the Ashley Madison hack last year.