CyberInsecure.com

Daily cyber threats and internet security news: network security, online safety and latest security alerts
June 12th, 2011

Pron.com And 55 Additional Adult Websites Compromised, 26000 Emails And Passwords Posted Online

The notorious LulzSec hacking outfit has leaked over 26,000 email addresses and plain text passwords stolen from the database of an adult website Pron.com. After dumping the data online, the group encouraged people to try the login credentials on Facebook and tell the victims’ family members how they signed up for the adult site.

The reason? Just for fun. “Watch the hilarity. Tell us about it on twitter!” the hackers wrote in their announcement. Fortunately, word of the potential abuse quickly reached Facebook’s security team which forced password resets for all accounts corresponding to those email addresses.

This impressed LulzSec members, but also gave them new ideas for future attacks. “Props to Facebook security for locking all emails located on our list so fast. That’s the kind of security that earns a tip of our hat,” the hackers wrote.

“Hmm… so Facebook automatically locks every email on our list… exploitable. >:] Until next time, Facebook. Bwahahaha,” they later tweeted.

LulzSec pointed out that there were a number of .gov and .mil email addresses registered on the compromised site, as well as some 55 accounts belonging to admins of other adult portals.

Partial screenshot from the 26,000 emails and passwords txt file released online on LulzSec website:

The group didn’t stop with this leak. It also published the personal information (dox) of executive officers and other employees from vulnerability research company Endgame Systems and anti-DDoS solutions provider Prolexic Technologies.

The dox didn’t only include information about these individuals themselves, but also their spouses, children and other family members, and their respective social media accounts.

Endgame Systems is a company set up by former ISS and CIA executives with the purpose of selling offensive security solutions and zero-day vulnerability information. The HBGary Federal email leak from earlier this year revealed that the company and its management make significant efforts to keep a low profile.

Meanwhile, Prolexic Technologies has made a selling point from the DDoS attacks orchestrated by Anonymous. In 2010 the company helped firms considered by the hacktivist group as WikiLeaks enemies to protect themselves.

Credit: Softpedia.com News

Share this item with others:

More on CyberInsecure:
  • Nepal Supreme Court Website Compromised And Became Porn Video Hoster
  • Gawker Media Compromised, Database With 1.3 Million Emails, Usernames And Passwords Exposed
  • Trapster.com User Emails And Passwords Might Have Been Compromised
  • List of 20000 More Email Accounts From Gmail, Hotmail, Yahoo, AOL And Others Posted Online
  • European Space Agency Website ESA.int Hacked, FTP And Email Passwords Leaked

    • Posted in Cybercrime, DDoS, Hardware, Microsoft, Privacy, Spam, Targeted Attacks, Uncategorized, Vulnerabilities | Print This Post Print This Post

    This entry was posted on Sunday, June 12th, 2011 at 5:27 pm and is filed under Cybercrime, DDoS, Hardware, Microsoft, Privacy, Spam, Targeted Attacks, Uncategorized, Vulnerabilities. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

    If you found this information useful, consider linking to it from your own website.
    Just copy and paste the code below into your website (Ctrl+C to copy)
    It will look like this: Pron.com And 55 Additional Adult Websites Compromised, 26000 Emails And Passwords Posted Online

    Leave a Reply

    Comments with unsolicited links to other resources will be marked as spam. DO NOT leave links in comments. Please leave your real email, it wont be published.

    *
    To prove you’re a person (not a spam script), type the security word shown in the picture. Click on the picture to hear an audio file of the word.

    « «
    » »