AdultFriendFinder's hacked database available for download

LipsAs regular readers know, members of the casual sex hookup site AdultFriendFinder have been screwed, but not necessarily in the way they might like.

Unfortunately for anyone who wanted to keep secret the fact that they were looking for a friend or two (or three) to share their duvet with, the AdultFriendFinder database has not only been breached by hackers - it's now available for anyone to download from the internet.

And no, I'm not offering links.

But seeing as links to the database have been shared widely on social networks, it's not hard to find them. And it's easy to imagine that criminals may be considering how they can use it to blackmail those unfortunate enough to have their personal details listed inside it.

Section of AdultFriendFinder database

With depressing predictability, it appears that many AdultFriendFinder users may have not just used email addresses linked to them, but ones that also identify where they work. Maybe they were more worried about their partner snooping on their personal email than the office's IT department?

An eyeopening number of people even appear to have signed up to AdultFriendFinder from their corporate and government email addresses.

Yes, the opportunities for blackmail and sleazy tabloid newspaper headlines are obvious.

It's easy for those of us who would never consider signing up for a site like AdultFriendFinder to smirk at the users' discomfort, but we shouldn't forget that both they and the AdultFriendFinder website itself are victims of a criminal act.

By the way, it's good to see that AdultFriendFinder has posted a (rather subtle by their standards) warning on their home page:

AdultFriendFinder

I guess we should be grateful about that, as I previously complained about the lack of communication AdultFriendFinder had made to its exposed umm.. members.

Clicking on it will take you to an advisory about what is described as a "potential security incident".

Security update

Of course, you may only want to click on that link if you not worried about a snooping partner or IT team wondering why you're visiting a site affiliated with AdultFriendFinder. ;)

Read more: Millions of AdultFriendFinder members exposed after hack.

Tags: , , ,

Smashing Security podcast
Check out "Smashing Security", the new weekly audio podcast, with Graham Cluley, Carole Theriault, and special guests from the world of information security.

"Three people having fun in an industry often focused on bad news" • "It's brilliant!" • "The Top Gear of computer security"

Latest episode:

, , ,

7 Responses

  1. Kim

    May 24, 2015 at 3:43 pm #

    This is about adultfriendfinder. I have been having a lot of problems with someone making up a profile on me with my picture, name, phone number, age, and everything else about me. I found out because I was getting text from guys I didn't know anything about asking me if I want to do some dirty things they would even call me. Well I tried to get the site to deleted the profile but they need info that I have know way of knowing because I didn't make the profile and because of this I losed an amazing guy because he thinks I am a player because of someone uesing all my stuff. Tell me is there anything you can do about it?

    • Anonymous in reply to Kim.

      May 25, 2015 at 12:04 pm #

      Depending on where you are, impersonating someone online can be considered a misdemeanor or even illegal, especially if that action results in the real person being harassed. Perhaps you should consider contacting law enforcement.

  2. Jim

    May 25, 2015 at 8:32 am #

    They've added the database to https://haveibeenpwned.com/ if anyone needs to check if they're on the list.

  3. VeraRiley

    May 29, 2015 at 10:47 am #

    I hear it was a really fun place to meet opened mined peolpe for what ever u are in to

    • Coyote in reply to VeraRiley.

      June 1, 2015 at 4:07 am #

      Well the same would go for harlotry, wouldn't it ? I mean after all, there's the risk of getting caught (something many fantasise about indirectly and/or directly) which actually seems to have happened here; there's the stigma with it (which isn't all that different here…); and in many places it is illegal although I'm not sure about it for this service – I would expect it is some places, though (and many others it is considered immoral/unethical/questionable/similar and I hardly doubt that is different here). And isn't it a paid for service ? Interesting how similar that is, isn't it, that one you're paying an online service (might as well be an online brothel) and the other is you're paying someone specifically (or sometimes a brothel, depending on how you like to do it). In fact it is so similar that it might as well be prostitution only that both participants pay. You give some, you take some, I guess… It is also interesting that according to http://bgr.com/2015/05/22/adult-friendfinder-dating-profile-hack-leak/ :

      "One interesting piece of information the hack appears to have brought to the surface is that the site might have a lot fewer females using it than you’d think. According to Channel 4, from the 26,939 users with U.K. email addresses, just 1,596 identified as female, which amounts to a ratio of one woman to every 16 men."

      It's also telling of many things, many things indeed.

  4. James

    August 20, 2015 at 12:37 am #

    there will be a percentage of people whose names will appear that signed up to try and bust a cheating spouse. it is not possible to look through these types of sites without signing up. therefore, I would suggest that those who search keep in mind, that perhaps your spouses name just might be there in an attempt to discover whether YOU are listed on one of these types of sites!

  5. Justgetdivorcedforcripessake

    November 15, 2016 at 2:58 am #

    Great job hackers!!

Leave a Reply