Newsletter
But let’s see where it comes from.
Two gay hookup websites have been breached with users’ personal and sensitive data stolen and sold online, new reports have claimed.
The databases, which are now being sold on dark web forums, were pulled from platforms called TruckerSucker and CityJerks.
They contain enough personally identifiable information to engage in identity theft (opens in a new tab), such as usernames and passwords, email addresses, profile pictures, sexual preferences, dates of birth, postal addresses, IP addresses and bios. The passwords are encrypted, but according to TechCrunch, the algorithm is “weak” and could be cracked by a more persistent hacker.
The silent treatment
HaveIBeenPwned founder Troy Hunt, who was informed of the leak, described the incident as a “typical forum breach, albeit with super sensitive content”.
However, the content includes more than identity data, as there are also messages that users exchange, such as arranging meetings and describing their sexual preferences.
In total, more than 80,000 people have been affected by this incident, according to the publication. Approximately 8,000 TruckerSucker users were compromised, along with 77,000 CityJerks.
For now, the owners and maintainers of these two websites are keeping quiet about it.
The two websites share an almost identical visual design, which could mean that they are operated by the same company and could use the same content management system (CMS), so the attackers managed to breach only these two. Unfortunately, until the owners share an update, it’s impossible to know exactly how they were compromised, whether threat actors discovered a zero-day, used some known malware, or some unique social engineering tactic.
If the passwords are as weak as claimed, a hacker could crack them and run them against other, more powerful platforms, such as financial services. Because consumers often use the same username/password combinations across a wide range of services, this breach can end up being much more destructive.
Via: TechCrunch (opens in a new tab)
Source link
A new article by TechToday has revealed how a group of hackers were able to steal passwords and emails from popular hookup websites. This alarming news comes at a time when online privacy and security are becoming ever more important.
At Ikaroa, we are dedicated to providing users with a secure platform to connect, meet and build relationships. We take the security of our users and the platform seriously. We make it our mission to stay up-to-date with the best available software, technologies, and research on security, so that our users can trust that their data is secure.
The breach revealed in today’s article serves as reminder to users of all popular websites that there risks involved in sharing personal data online. It is important to install the necessary security software to protect yourself and your data. Additionally, users should make sure to keep their passwords strong and regularly changed.
We also recommend users to refrain from disclosing personal information such as financial data or phone numbers to anyone they do not trust. Furthermore, it is recommended to use a different password for different websites and applications.
At Ikaroa, we understand the importance of maintaining user data privacy and security. That is why we have implemented strict security measures on our website, including two-factor authentication, secure password protection and the use of the latest advanced encryption technologies.
We are committed to continuing to offer our users with the best and safest experience possible. In this ever-changing digital landscape, it is our mission to remain vigilant and up-to-date on the latest measures to ensure our user’s data is kept well protected and secure.
