If you happen to have an account with Friend Finder Network adult sites, then you probably have to change your password as soon as possible. If you use the same login credentials on other sites, change those too. Friend Finder Network sites were hacked in October, and attackers were able to steal login data, including names and encrypted passwords that can be easily decrypted, for more than 412 million accounts.
The hack is almost as big as the Yahoo breach that was discovered and confirmed recently.
According to LeakedSource, which obtained a copy of the stolen user accounts, the 412 million accounts that were cracked go back 20 years. So even if you used the site at some point in the past, that data has been stolen.
The data dump includes 340 million AdultFriendFinder accounts, 63 million Cams.com accounts, 7 million Penthouse.com accounts, and more than one million for each Stripshow.com and iCams.com
It’s not clear who stole the data and for what purpose. Only usernames, passwords, and registration dates were stolen. This might be for hackers to try to obtain access to a person’s other online accounts, especially if that person reuses the same email address and password combination. The data can also be used to blackmail certain users, which is what happened last year following the Ashley Madison hack.
LeakedSource was able to crack 99% of the cracked passwords, an indication that hackers could also pull it off.
Friend Finder Networks has not confirmed the attack or its scope but told ZDNet that “over the past several weeks, FriendFinder has received a number of reports regarding potential security vulnerabilities from a variety of sources. Immediately upon learning this information, we took several steps to review the situation and bring in the right external partners to support our investigation.”