Hack password dating site
Hopefully, the security breach on Plentyoffish has really been fixed, but users who used the same username/e-mail/password combinations elsewhere should immediately change the passwords on other sites as well.
More than 42 million plaintext passwords hacked out of online dating site Cupid Media have been found on the same server holding tens of millions of records stolen from Adobe, PR Newswire and the National White Collar Crime Center (NW3C), according to a report by security journalist Brian Krebs.
Chad Greene, a member of Facebook’s security team, said in a comment on Krebs’s piece that Facebook’s now running the plain-text Cupid passwords through the same check it did for Adobe’s breached passwords – i.e., checking to see if Facebook users reuse their Cupid Media email/password combination as credentials for logging onto Facebook: I work on the security team at Facebook and can confirm that we are checking this list of credentials for matches and will enroll all affected users into a remediation flow to change their password on Facebook.
Facebook has confirmed that it is, in fact, doing the same check this time around.
Russo claims he's merely a security researcher, who had discovered a security hole on Plentyoffish, which was already "under active exploitation by hackers." Russo and his team disclosed the vulnerability to Frind's wife, he claims, and Frind and her were "interested in hiring us as security professionals in order to make an analysis of the plataforms." However, the relationship quickly deteriorated, with Frind accusing Russo that he stole Plentyoffish's database, threatening not only to sue him, but also to "destroy" his life.
At this point it's hard to understand what really happened; but the part of the story everyone seems to agree on is that a very popular dating site has been hacked and that users' passwords and other personal details (possibly even Pay Pal accounts) were compromised.
The above is the most important bit of info for Plentyoffish users, but the actual story of the hack and how it occurred is very confusing and differs highly depending on who you believe.
Cupid Media, which describes itself as a niche online dating network that offers over 30 dating sites specialising in Asian dating, Latin dating, Filipino dating, and military dating, is based in Southport, Australia.
Krebs contacted Cupid Media on 8 November after seeing the 42 million entries – entries which, as shown in an image on the Krebsonsecurity site, show unencrypted passwords stored in plain text alongside customer passwords that the journalist has redacted.
This wiki How will show you how to hack a site using cross site scripting as well as injection attacks.
It will also give you tips on how to set yourself up for success.
Search for hack password dating site:
The entire blog post is interesting mostly due to its weirdness, as it involves a shady business partner, Frind e-mailing Russo's mother, and hints about Russo's other hack-and-extort operations.