A massive data breach targeting adult dating and entertainment company Friend Finder Network has exposed more than 412 million accounts.
The hack includes 339 million accounts from AdultFriendFinder.com, which the company describes as the “world’s largest sex and swinger community.”
62 million accounts from Cams.com, and 7 million from Penthouse.com were stolen, as well as a few million from other smaller properties owned by the company, including over 15 million “deleted” accounts that wasn’t purged from the databases.
The data accounts for two decades’ worth of data from the company’s largest sites, according to breach notification LeakedSource, which obtained the data.
The personal details of millions of people who signed up to the adult-themed dating network in the past 20 years have been exposed in one of the largest ever data breaches.
The email addresses and passwords of 412 million people have been leaked after the meetup website Adult Friend Finder was hacked, email address were stolen in the breach, which also included the date of last visit, browser information, some purchasing patterns.
Adult Friend Finder describes itself as “one of the world’s largest sex hookup” websites, with more than 40 million active users. The hack, against its parent company Friend Finder Networks, also involved data from Cams.com, a live video sex site, and Penthouse.com, an internet porn site that was sold in February.
The attack happened just as as a security researcher, known as Revolver, disclosed a local file inclusion flaw on the AdultFriendFinder site, which can be exploited to enable the remote deployment of malicious code on the web server. The identity of the perpetrators of the recent hack against Friend Finder Networks, a California-based company is not known. Revolver denied he was behind the data breach, and instead blamed users of an underground Russian hacking site.
The attack on Friend Finder Networks is the second in as many years. The company, based in California and with offices in Florida, was hacked last year, exposing almost 4 million accounts, which contained sensitive information, including sexual preferences and whether a user was looking for an extramarital affair.