A new security breach exposed the private data of the users of two well-known dating sites for men, which were sold by cybercriminals on the Internet, as happened recently with MyFreeCams.
The databases, which are now traded on dark web forums, were taken from platforms called TruckerSuckers and CityJerksas published by the TechRadar site.
Apparently, the databases contain precious personal identification engage in identity theft, such as usernames and passwords, email addresses, profile pictures, sexual preferences, dates of birth, postal addresses, IP addresses, and biographies.
Troy Hunt, founder of site HaveIBeenPwned, which tipped off dating sites about the leak, described the incident as a “typical forum violation, albeit with super sensitive content“.
However, the content it includes more than just identity datasince there are also internal messages that users have exchanged, including setting up meetings and the description of your sexual preferences.
In all, more than 80,000 people were affected for this incident. Approximately 8,000 TruckerSucker users were compromised, along with 77,000 CityJerks people.
How was the cyber attack
the two websites they share an almost identical visual designwhich could mean that they are managed by the same company and may be using the same content management system (CMS), which is why the attackers have only managed to crack these two.
So far, the causes that have generated this flaw in the database of these dating sites are not known. specialists agree that it’s impossible to know exactly how they were compromised—whether the attackers discovered flaws in the code, used known malware, or simply social engineering.
Because users often use the same username/password combination across a range of services, from email to online banking, this breach would have serious consequences, they said.
How to check if your password is leaked
Have I Been Pwned is one of the most important and popular tools when it comes to the security of user credentials.
Through this site you can check if the email address or username has suffered a massive data leak, as happened with Adobe and Sony accounts in 2014.
Another good option in this section is Hesidohackeado.com. Here you just need to enter an email address associated with any registration in any account (in the appropriate box), and after clicking on the tick button, the site will reveal detailed information on the screen.
Source: Clarin
Linda Price is a tech expert at News Rebeat. With a deep understanding of the latest developments in the world of technology and a passion for innovation, Linda provides insightful and informative coverage of the cutting-edge advancements shaping our world.