All data pertaining to customers should be automatically classified and encrypted the moment it is created, ensuring that only authorised users can open it.
With this in place, even if data is stolen it will be much more difficult for criminals to make use of it.
In a word, it looks like Adult Friend Finder had as close to no security as you can get while running such a website.” Mark James, Security Specialist at “This leaked data is astounding.
The fact that people are still using the most common passwords we see time and again is truly amazing.
Stolen email addresses will leave the victims vulnerable to phishing attacks and fraud across other sites using the address, while names and other details can be used as a source of embarrassment or blackmail.
Users should keep in mind that everything they post or share online may become public one day.
Both internet users and the security industry as a whole need to get their respective acts together on this in order to prevent the still very widespread and repetitive use of extremely poor credentials.” Adam Brown, Manager, Security Solutions at “When data breaches occur you want to be sure that the data that is extracted is encrypted to such a level that it is of no use to outsiders.
In this case verification has shown that some data is stored in clear text while passwords are encrypted with SHA-1 (not enough to thwart today’s adversaries).
But for all intents and purposes, it looks as if security wasn’t even an afterthought.
Not only were passwords stored with trivial protection, but accounts that users had deleted, appeared to not have been deleted at all.