Adult friend finder data
Classics such as “123456” and “password” have been flagged up time and again after other sites have been breached.Both internet users and the security industry as a whole need to get their respective acts together on this in order to prevent the still very widespread and repetitive use of extremely poor credentials.” Adam Brown, Manager, Security Solutions at “When data breaches occur you want to be sure that the data that is extracted is encrypted to such a level that it is of no use to outsiders. is investigating reports that data from more than 412 million user accounts was stolen from five of the company’s online-dating, sex-chat and pornography sites.The stolen data includes 20 years of customer email addresses and passwords, according to Leaked Source.com, an anonymously run website that sells access to stolen records.Many of the stolen records are from accounts that are no longer active, Leaked Source said.Others may be duplicates or created by automated programs known as “bots.” Leaked Source said most of the records, 340 million, were taken from Adult Friend Finder.com, which facilitates casual relationships.Not only were passwords stored with trivial protection, but accounts that users had deleted, appeared to not have been deleted at all.The impact from sites such as Adult Friend Finder could be as significant as the Ashley Madison breach which had reports of suicides as a direct result of the breaches.
By storing passwords in clear text or insecure formats, companies render even complex passwords useless.With this in place, even if data is stolen it will be much more difficult for criminals to make use of it.While it's the largest data breaches that grab our attention, even smaller information security failures can have a big impact on a business, reducing its credibility, turning off current and potential clients, and making individuals far more vulnerable to fraud and identity theft.The fact that people are still using the most common passwords we see time and again is truly amazing.
We know these passwords are out there, we know they are easily cracked, we know we should not be using them but we still do, it makes no sense.While companies obviously need to harden their defences against intrusion as much as possible, they must also prepare their data for the event of a successful attack.All data pertaining to customers should be automatically classified and encrypted the moment it is created, ensuring that only authorised users can open it.If true, the mastermind behind that idea should probably be feeling very uneasy about their future job prospects right now.