The Largest Breach Of 2016

Even though most people don’t like to admit it, porn is one of the most popular features of the internet.  Just remember, it’s not something usually spoken about at parties.  Here is the problem, it has come to light that one of the biggest players in the online porn business has now been breached. According to the breach notification website LeakedSource.com , the login credentials for over 412 million users of California-based FriendFinder Networks Inc have been compromised. The Largest Breach Of 2016 

So What happened?

Friend Finder Network Inc. is the parent company that operates a wide range of 18+ adult websites. In October of 2016, it suffered its 2nd, and this time much bigger, account breach of over 400 million accounts. It seems a large number of accounts represents 20 years of customer data/history.  By comparison, the MySpace breach affected 360 million users. This event also marks the second time Friend Finder has been breached in two years, the first being around May of 2015. The 2015 hack affected an estimated 3 1/2 million users.

As stated previously, FFN is the parent company for a number of sites. The breach is split among a number of the sites they run. The following list breaks down who got breached.

• Adultfriendfinder.com, known as the “World’s largest sex & swinger community”

339,774,493 users

• Cams.com, known as the place “Where adults meet models for sex chat live through webcams”

62,668,630 users

• Penthouse.com, The online home for the Adult magazine

7,176,877 users

• Stripshow.com, which is Another 18+ webcam site

1,423,192 users

• iCams.com, which offers “Free Live Sex Cams”

1,135,731 users

• In addition, there is an Unknown domain (as of now) that FFN runs which as affected.

35,372 users

The Grand Total of affected users so far discovered = 412,214,295 (again as of now) 

So How Did The Hack Happen? 

For those who are geeky, the parent company FFN Network was hacked via a Local File Inclusion exploit. If you want a specific breakdown of the exploit CSOOnline.com has the details.

Interesting Stats 

One of the more interesting stats is the number of registered email addresses that end in .gov and .mil.  There are 5,650 addresses that end in .gov (as in US Government emails) and 78,301 addresses that end in .mil (as in the US Military).  Needless to say, not judging anyone’s tastes online, but if you are going to visit adult sites of this nature especially, couldn’t you take 5 extra minutes to create an account of a nondescript online web account (as in Gmail, Yahoo, or Live/Hotmail.com). In addition there is a break out of the top 10 @ addresses breached.

So Now What? 

Again, as said earlier, NOT JUDGING, however, if you used any of the services listed and you have also used the same email/password on other sites, like work accounts,  online billing, or anything else, you need to change your password ASAP.  In addition, from an earlier Tech Geek and More post, you will want to consider turning on 2-factor authentication on your various logins (where ever possible).

Source

• Hacking Information – LeakedSource.com