Hack passwords a dating site
Hack passwords a dating site - Sex Chat
Mate1just proved that after the Ashley Madison hack, we’ve learned nothing.
“Their server was compromised and the My SQL database was dumped,” the hacker told Motherboard.An intrusion at online dating service Cupid Media earlier this year exposed more than 42 million consumer records, including names, email addresses, unencrypted passwords and birthdays, according to information obtained by Krebs On Security.The data stolen from Southport, Australia-based niche dating service Cupid Media was found on the same server where hackers had amassed tens of millions of records stolen from Adobe, PR Newswire and the National White Collar Crime Center (NW3C), among others. Six days later, I heard back from Andrew Bolton, the company’s managing director.The purloined database contains more than 42 million entries in the format shown in the redacted image below. Bolton said the information appears to be related to a breach that occurred in January 2013.“In January we detected suspicious activity on our network and based upon the information that we had available at the time, we took what we believed to be appropriate actions to notify affected customers and reset passwords for a particular group of user accounts,” Bolton said.“I had shell/command access to their server.” The shocking part is that it appears Mate1hosted the files in plaintext without any hashing.
I tested this by creating an account and then clicking the “forgotten password” link only to have my full password emailed to me in plaintext.
If you or someone you know has a Mate1account, it’s time to change passwords.
The dangerous thing about these hacks isn’t that someone has compromised an online dating account, it’s that many users share passwords between services, so a Mate1password might also be used for Gmail, Amazon, or a bank account.
“We are currently in the process of double-checking that all affected accounts have had their passwords reset and have received an email notification.” as listed in the purloined directory, he suggested I might have “illegally accessed” some of the company’s member accounts.
He also noted that “a large portion of the records located in the affected table related to old, inactive or deleted accounts.” “The number of active members affected by this event is considerably less than the 42 million that you have previously quoted,” Bolton said.
The company’s Web site and Twitter feed state that Cupid Media has more than 30 million customers around the globe.