Friendfinder Breached: 412 Million Accounts Exposed

0
55
Advertisement

According to Leakedsource, a breach notification website which specializes in highlighting hacking incidents, reported that Friendfinder, a wide range of 18+ services, was hacked in October of 2016 for over 400 million accounts representing 20 years of customer data which makes it by far the largest breach we have ever seen — MySpace gets 2nd place at 360 million.

This event also marks the second time Friend Finder has been breached in two years, the first being around May of 2015.

A list of sites we have verified, how many affected accounts and a brief description are as follows:

  • Adultfriendfinder.com “World’s largest sex & swinger community” – 339,774,493 users
  • Cams.com “Where adults meet models for sex chat live through webcams” – 62,668,630 users
  • Penthouse.com “Adult magazine akin to Playboy” – 7,176,877 users
  • Stripshow.com “Another 18+ webcam site” – 1,423,192 users
  • iCams.com “Free Live Sex Cams” – 1,135,731 users
  • Unknown domain – 35,372 users
  • Total: 412,214,295 affected users

The Friendfinder Breach was carried out via a Local File Inclusion exploit and you can read more about the situation when it was initially reported from this link.

The database also had deleted user records formated as email@address.com@deleted1.com where users who tried to delete their account had their data obviously still kept around on the database. According to a reporter it is impossible to register an account using an email that’s formatted this way which means the addition of “@deleted.com” was done behind the scenes by Adult Friend Finder. So counting the amount of emails with “@deleted” near the end, we have 15,766,727 “deleted” accounts in AdultFriendFinder.com.

To make this breach even worst, Passwords were stored by Friend Finder Network either in plain visible format or SHA1 hashed (peppered). Neither method is considered secure by any stretch of the imagination and furthermore, the hashed passwords seem to have been changed to all lowercase before storage which made them far easier to attack but means the credentials will be slightly less useful for malicious hackers to abuse in the real world. 99% of all the sites passwords were made visible in plain text.

The top 10 email providers were inclusive of Hotmail, Yahoo, Gmail, AOL, Hotmail France, live.com, Yahoo France, Yahoo Taiwan, Hotmail UK and Ymail of which there are over 94 million Hotmail addresses.

Top 5 Main languages were inclusive of English, Spanish, Portuguese, French and chinese.

 

friendfinder-breach-screenshot

Learn More 

HashFlare

Leave a Reply