Over 400 Million Accounts Exposed in FriendFinder Data Breach
FriendFinder Networks is investigating claims that the personal information of more than 412 million users was stolen from five of the company’s sex-chat, pornography and online dating sites.
LeakedSource first reported the possible breach, saying 20 years of customer email addresses and passwords were stolen.
340 million of the stolen records were taken from AdultFriendFinder, a site which helps users find casual relationships. However, many of the records are from inactive accounts, and others may have been duplicates or created by “bots,” which are automated programs. In February, AdultFriendFinder reported more than 60 million users.
LeakedSource also reported that data was also stolen from Penthouse.com, iCams.com, Stripshow.com and Cams.com.
FriendFinder Networks is yet to confirm or deny the breach, but a representative from the company told The Washington Post it had “received a number of reports regarding potential security vulnerabilities from a variety of sources” and is investigating.
“Immediately upon learning this information, we took several steps to review the situation and bring in the right external partners to support our investigation.”
Details of how or when the data was stolen have yet to emerge. In October, an anonymous hacker claimed to have found programming flaws on the AdultFriendFinder site, and LeakedSource believes these flaws led to the latest breach.
LeakedSource has published “data schemas” of the information that show how it was formatted on FriendFinder’s systems. The website said it will not publish the account information that it found, as it would be potentially embarrassing to account holders, given the nature of the websites.
This is AdultFriendFinder’s second alleged hack in recent history. Last year, Channel 4 News in the U.K. reported it had discovered a database on an online hacker forum that held the personal information of 3.9 million of the website’s members.