AdultFriend Finder got hacked. And people are scared. This could be far bigger than The Fappening. In fact, there may be reason for our own government to be concerned about the sexual secrets of millions of people being at risk.
The popular adult dating site was the target of a breach by a hacker who calls himself ROR[RG]. The alleged perpetrator claimed in an online hacker forum that he had loads of personal data on their customers, including past customers who thought they had deleted their accounts. He claims he blackmailed the company, demanding that they pay him $100,000 to keep the data private.
The parent company of the Adult FriendFinder site said in a statement:
“We have already begun working closely with law enforcement and have launched a comprehensive investigation with the help of leading third-party forensics expert,” the company said. “We cannot speculate further about this issue, but rest assured, we pledge to take the appropriate steps needed to protect our customers if they are affected.”
3.5 Million: Number of Compromised Users in The Recent Adult Friend Finder Hack
— Lacy Bates (@roseamyw) May 23, 2015
Other hackers claim to be preparing to individually email the customers whose data has been stolen, promising to cut ROR[RG] in when they make any money.
“i am loading these up in the mailer now / i will send you some dough from what it makes / thank you!!” wrote a hacker who calls himself MAPS.
"How did you meet ?" "We found each other in the adult friend finder breach dump".
— Brendan Seerup (@AtomicPlayb0y) May 22, 2015
Cybercrime expert Charlie McMurdie said that kind of information this breach has revealed could be especially difficult for those exposed.
“Where you’ve got names, dates of birth, ZIP codes, then that provides an opportunity to actually target specific individuals whether they be in government or healthcare for example, so you can profile that person and send more targeted blackmail-type emails.”
Former Adult Friend Finder users: So you thought your account was deleted? pic.twitter.com/Z8W4MzLewz
— Cassie (@ioCassie) May 22, 2015
This kind of information is just the material that provided fodder for classic espionage efforts. When you have personal information, as well as specifics of sexual proclivities of a person, it makes it easier to have them at your mercy. A person found in those files to be in a sensitive position or even have low-level access to certain information could be vulnerable to foreign or even terrorist leveraging.
Some enterprising person has set up a website where you can check to see if your information was among the names breached. Then again, that site may do nothing but collect even more names and emails of people who are concerned that they might be exposed. That could be used to accuse them of having something to hide.
If you're waking up the news of the Adult Friend Finder breach, there's 4M records now searchable on @haveibeenpwned https://t.co/uNoeoQr1JA
— Troy Hunt (@troyhunt) May 22, 2015