Beacon Transcript – The FriendFinder Networks, a large adult entertainment and dating company has reportedly been hacked and exposed the account details of 412 million of its users.
The FriendFinder Networks include sites the like of Cams.com, AdultFriendFinder, Penthouse, iCams.com and also Stripshow.
As the company admitted to have been facing a number of problems, reports state that the adult entertainment and dating company databases have actually been hacked and revealed user data.
The as yet unknown hacker or hackers in the still unconfirmed attack are thought to have gained access to all the sites administered by FriendFinder Networks.
A number of over 15 million supposedly deleted accounts that had not been removed from the company databases are also believed to have been affected by the breach.
The estimates report that AdultFriendFinder had 339 million user accounts breaches just as Cams.com is believed to have had 62 million accounts disclosed by the attack.
Reports also believe that 7 million Penthouse.com account information were exposed with the other, smaller sites coming to account for a few more million hacked accounts.
The source of the reports is the LeakedSource which declares that the FriendFinder data breach targets company data gathered from over two decades of their largest sites’ information.
An official confirmation of the reported data breach has not yet been released, however, the company did reveal site vulnerabilities.
According to Diana Ballou, FriendFinder Networks senior counsel and vice president, the company has been receiving various reports which point to a potential security vulnerability.
As the vulnerability reports came in from different sources, Ballou declared that the company sought immediate action as it set out to investigate the possible situations.
Appropriate external partners that will help investigate the situation have also been called in by the company so as to help determine a solution.
Ballou also went to reveal that amongst the false extortion attempts claims, the company investigation detected and fixed a source code vulnerability.
This vulnerability would have allowed an accessing of the source code as it was based on an injection vulnerability.
The attack is thought to have taken place in October, around the time a security researcher by the name of Revolver revealed that one of the company’s sites, AdultFriendFinder, presented a local file inclusion vulnerability.
If it were to be exploited, the vulnerability would have allowed the potential attacker the option of running malicious codes on the FriendFinder web servers.
If the breach will be confirmed by the company, it will mark the second such attack on the FriendFinder Network in just two years.
Just last year, the FriendFinder Network was subject to an attack which exposed sensitive user information collected from about 4 million user accounts.
The reported FriendFinder Network data breach, if confirmed, could come to surpass the MySpace hack which was exposed earlier this year and which had an approximate number of 360 million exposed accounts.
Image Source: Flickr