Kirk is a veteran journalist who has reported from more than a dozen countries.
Based in Sydney, he is Managing Editor for Security and Technology for Information Security Media Group.
It also has a slight benefit, as Leaked Source writes that "the credentials will be slightly less useful for malicious hackers to abuse in the real world." For a subscription fee, Leaked Source allows its customers to search through data sets it has collected. "We don't want to comment directly about it, but we weren't able to reach a final decision yet on the subject matter," the Leaked Source representative says.
In May, Leaked Source removed 117 million emails and passwords of Linked In users after receiving a cease-and-desist order from the company.
"Their [Friend Finder Networks'] infrastructure is two decades old and slightly confusing." Many of the passwords were simply in plaintext, Leaked Source writes in a blog post.
But, there’s actually a whole slew of other dating apps that may be even more useful for you. The one drawback of the location focus is that after a bad date, you risk an awkward run in at the gym.But the company fixed a code injection flaw that could have enabled access to source code, Friend Finder Networks told the publication.It wasn't clear if the company was referring to the local file inclusion flaw.It could also be particularly worrisome because Leaked Source says the accounts date back 20 years, a time in the early commercial web when users were less worried about privacy issues.The latest Friend Finder Networks' breach would only be rivaled in sensitivity by the breach of Avid Life Media's Ashley Madison extramarital dating site, which exposed 36 million accounts, including customers names, hashed passwords and partial credit card numbers (see Ashley Madison Slammed by Regulators).Still, those passwords were hashed using SHA-1, which is considered unsafe.Today's computers can rapidly guess hashes that may match the real passwords.Troy Hunt, an Australian data breach expert who runs the Have I Been Pwned data breach notification site, says that at first glance some of the data appears legitimate, but it's still early to make a call. "I'd need to see a complete data set to make an emphatic call on it." If the data is accurate, it would mark one of the largest data breaches of the year behind Yahoo, which in October blamed state-sponsored hackers for compromising at least 500 million accounts in late 2014 (see Massive Yahoo Data Breach Shatters Records).It also would be the second one to affect Friend Finder Networks in as many years.But the leaked data could encompass many more sites, as Friend Finder Networks runs as many as 40,000 websites, a Leaked Source representative says over instant messaging.One large sample of data provided by Leaked Source at first seemed to not contain current registered users of Adult Friend Finder.