Contributed by: ElyseRomano Monday, June 08 2015 @ 06:45 am
Looking for a morally suspect way to blow $17,000? Here's an idea: purchase the private info stolen from an adult dating website.
According to multiple reports, a massive database of user data was swiped from casual hookup site AdultFriendFinder. It's now going for 70 bitcoins — the equivalent of nearly $17,000 — on the Dark Web.
Adult FriendFinder boasts 63 million users worldwide, billing itself as a "thriving sex community.” Up to 4 million members who shared sensitive sexual information with the site have been affected by the hack.
Allegedly the unredacted data for sale includes personal details like names, email addresses, and postal codes, as well as information about sexual habits and orientation. In addition to your garden variety identity fraud and spam, a breach of this nature could put users at risk of extortion and blackmail.
Interest in the poached info appears to be high. ROR[RG], the moniker used by the hacker who claims to have breached the site, wrote "I have had so many people ask me to buy the db today" in an underground forum on Saturday. ROR[RG] is also offering to break into any company or website for 750 bitcoins (about $170,000).
Within hours of the data being leaked, hackers on the forum declared their intentions to hit victims with spam emails. After sending out virused emails, they can trawl through the data for potential blackmail targets. So far there have been confirmed reports of users receiving spam with malware or trojans.
FriendFinder Networks, the Silicon Valley company that operates the service, says “there is no evidence that any financial information or passwords were compromised.” The company has hired the Mandiant response division of cyber-security company FireEye, which has previously investigated a number of high-profile breaches, to investigate.
In the meantime members are urged to update their user names and passwords. AdultFriendFinder is also temporarily blocking attempts to search for user profiles by any users who are suspected of being affected by the security issue.
"As is common with similar cyber attack events, until the investigation is completed, it will be difficult to confirm the full scope of the incident, but we will continue to work vigilantly to address this potential issue and will provide updates on this site as we learn more from our investigation," said Adult FriendFinder in a statement. "Protecting our members' information is our top priority and we will continue to take the appropriate steps needed to protect our members and their information."