FriendFinder Network, the parent company of AdultFriendFinder and Cams.com, was hacked. The hack has resulted in over 400 million accounts being exposed, with 339 million coming just from AdultFriendFinder. Another 62 million are from Cams.com. Accounts on sites like Stripshow and iCams.com have also leaked.
An LFI vulnerability in AdultFriendFinder was exposed a few weeks ago and it appears that flaw was exploited in this leak.
It’s been revealed FriendFinder Network also failed to adequately protect user passwords. Most were either left in plain text or weakly protected by an SHA1 algorithm.
Leaked Source reports the company held onto data from deleted accounts as well, meaning those who were previously members are also affected.
If you’ve ever had an account on a FFN site and use the same password elsewhere, you should change it.
