They wrote about the files saying, "there is a ton of personally identifiable information (PII) sitting in a forum on the Darknet that has been viewed 1,756 times."Driving home the harm to consumers, the post explained, "It is unknown how many times the breached data files have been downloaded.
Though the files were stripped of credit card data, it is still relatively easy to connect the dots and identify thousands upon thousands of users who subscribe to this adult site."Security is one area in which adult and porn sites are far behind, and no matter how you feel about sex work and adult entertainment, they are arenas in which strong security should be a priority for all involved.
Right now, giants like Pornhub and Brazzers don't have https.
Encouraging adult sites to make small changes for better security, from hookup networks such as Friend Finder to porn tube sites, is a larger undertaking than you'd think.
Suffice to say, federal employees are in the category of pervs who need to make sure they aren't reusing any of those bad passwords on other accounts.
As we discovered by files exposed in the Ashley Madison breach, Friend Finder wasn't removing profiles that users believed to have been closed or removed.
first reported the discovery of a serious security issue with FFN then revealed the beginning of this massive database catastrophe.
In October, a researcher who went by the names "1x0123" and "Revolver" posted screenshots on Twitter showing what's known as a Local File Inclusion vulnerability on Adult Friend Finder.
They recently released a brief with the Center for Democracy and Technology (CDT) to try and push porn sites to level up their secure connections and all use https.The idea that there is one "adult industry" is little more than that, an idea.In reality, it's a wide variety of small business entrepreneurs and large legacy businesses, with a ton of independent contractors constantly flowing through the global network.Stolen Friend Finder Networks files show that 78,301 accounts used a email address, 5,650 used a email.reports addresses associated with the British government include seven email addresses, 1,119 from the Ministry of Defence, 12 from Parliament, 54 UK police email addresses, 437 NHS ones and 2,028 from schools.Leaked Source said "this data set will not be searchable by the general public on our main page temporarily for the time being."But as infosec blog put it, "The point is, these records exist in multiple places online.They're being sold or shared with anyone who might have an interest in them."That's more users than Twitter and a third of Facebook's global membership.Right now, generally the adult sites that have better security are indies outside the mainstream industry, like queer porn sites and sex culture blogs (like mine).Hopefully we don't need to have another OPM-of-adult security tragedy, like the Friend Finder debacle, to see the leading porn sites with the majority of users get up to speed in the fight against hack attacks.Revolver is known for finding adult website security issues, and they confirmed to that the flaw was being actively exploited.Right away, Leaked Source began to receive files from Friend Finder's databases -- some 100 million records.