Details of the security breach were reported by the U. One of the largest dating websites, Adult Friend Finder bills itself as a place to "hookup, find sex or meet someone hot now" and has over 64 million members worldwide.
The hacker claiming responsibility, who goes by the handle ROR[RG], posted several spreadsheets detailing the data records of more than 3.5 million users.
“Friend Finder employees receive hundreds of sales and marketing spam messages daily, including many from third party cyber security consultants, and any earlier communication on this specific issue was directed to junk mail folders and not considered a legitimate email,” the company said in a statement.
In addition to launching an internal review, Friend Finder Networks has hired Mandiant, a high-profile cybersecurity company, to investigate the hack, and is working with the FBI.
The online dating company would not comment on the read receipt, but said its “leadership” only became aware of the breach on 20 May when contacted by Channel 4 News.Meanwhile, the person who originally dumped the information on the so-called darkweb, who uses the nickname ROR[RG}, is demanding more than £10,000 for access to the database of users, and capitalising on the news by marketing his cybercrime services.“I have had so many people ask me to buy the db [database] today,” the hacker wrote on the same forum where the original leak appeared, asking for payment in the anonymised currency Bitcoin., which obtained a portion of the database and confirmed its legitimacy, the leaked information "does not appear to contain sexual preference data, unlike the 2015 breach." However, the site was able to see account usernames, emails, passwords, the last login, IP addresses, browser information, and other information.Friend Finders Network did disclose to that it had been aware of vulnerabilities and had taken steps to correct it.In its response to our story, the company stated that it had “only just been made aware” of the hack.But an email trail on that a warning about the leak was sent by a cyber security consultant on 12 March.“Or if you need I will break into any company or site for 750 in under seven days,” the writer adds.The names and email addresses of more than 3 million members of the sex and hookup site Adult Friend Finder have been released online.The hack also revealed that the company had kept information on 15 million accounts that users had deleted, as well as information on users for assets it no longer owned, such as Penthouse.By comparison, the Ashley Madison hack that took place in July 2015 revealed 32 million accounts, although that attack was also accompanied by a more aggressive extortion campaign.