Adult friend finder accounts
Editor’s Note: In the tech indsutry, where everyone is constantly preparing for the inevitable, Jeremy Ho, Aaron Murray, Christopher Barron, Spencer Thomas and Vincent Le describe one of the most prominent web application targeted attacks in this blog post — Local File Inclusion (LFI), which also led to one of the biggest hacks in 2016 that revealed millions of customers’ sensitive information.As our understanding of the cyber world evolves, love becomes harder and harder to find.The parent company of Adult Friend Finder is Friend Finder Networks.
Certificate management firm Venafi claimed that private information such as passwords appeared to have been protected using only the obsolete SHA-1 hashing algorithm.
One security analyst had previously warned the company of a local file inclusion flaw, and following that warning the hackers were able to run malicious software. A collision occurs when two different message inputs, or passwords, generate the same hash.
That security analyst, known as Revolver, denied any participation in the hack. Hackers can use this collision exploit to their advantage.
Out of the 412 million accounts compromised, 78 thousand accounts used military e-mails and 5.6 thousand US Government email addresses were also discovered.
Over 99% of account passwords were leaked and large amounts of confidential data such as sexual preferences and marital status were also compromised.