Adult friend finder accounts
This stolen information has in large part been posted to various places across the internet making the information easily accessible to malicious opportunists and to the general public. This attack is very common and there are straightforward ways to prevent these attacks.
Local File Inclusion(LFI) was the type of attack that breached A. This attack is where the hacker is attempting to gain access to the server by including a malicious file in a vulnerability found when a multimedia file upload is incorrectly configured by the server. and their sister sites, 99 percent of the server database containing usernames, passwords, and emails were cracked as Friend Finder Network(FFN) stored sensitive information in plain text and used an outdated security algorithm known as Secure Hash Algorithm with pepper (SHA-1) .
More than ever, people are turning to online dating as their sole source of companionship, feeding their personal information to the websites.
It was just a matter of time, until a huge security breach happened.
This type of attack would allow the hacker to view local files stored on the server. SHA-1 is a hash function algorithm that encrypts and hides files and data.
Understanding what Local File Inclusion can be tricky, but it is pretty simple to understand. was informed from a variety of sources regarding potential security vulnerabilities. SHA-1 with pepper adds security to a database of hashes because it increases the number of secret values that must be recovered (whether by brute force or discovery) to recover the inputs .
Editor’s Note: In the tech indsutry, where everyone is constantly preparing for the inevitable, Jeremy Ho, Aaron Murray, Christopher Barron, Spencer Thomas and Vincent Le describe one of the most prominent web application targeted attacks in this blog post — Local File Inclusion (LFI), which also led to one of the biggest hacks in 2016 that revealed millions of customers’ sensitive information.
Over 99% of account passwords were leaked and large amounts of confidential data such as sexual preferences and marital status were also compromised.
Last month a hacker known as Revolver or 1x0123 claimed he had gained access to the site’s backend servers through a Local File Inclusion hack before posting two screenshots purporting to show compromised data to his Twitter feed.
The latest breach follows a high profile hack in May 2015 that led to the leaking of 4 million records.
Security experts criticised that site for not doing enough to prevent a repeat breach.
David Kennerley, director of threat research at security software firm Webroot, commented: “This attack on Adult Friend Finder is extremely similar to the breach it suffered last year….