Posted by: Ken Harthun
cyber security, hackers, Password, Plenty of Fish, Security best practice
An attack on PlentyOfFish.com, a free online dating site, has reportedly compromised the passwords of nearly 30 million accounts. According to the site’s founder, Markus Frind, an Argentine hacker was behind the attack. In a strange twist, Frind also suggested that cyber security journalist Brian Krebs was also involved in some way. According to Krebs in his recent post, “…I have notified dozens of companies about various breaches over the years, and I’ve learned to read between the lines in how victims respond. Usually, when the company in question replies by implicating you in an alleged extortion scheme, two things become clear:
“1) You’re probably not going to get any real answers to your direct questions about the incident, and;
“2) The company almost certainly did have a serious breach.”
Frind has since made clear in his blog that Krebs was not involved:
Update*** Just to be clear Krebs didn’t have anything to do with this. I was trying to convey how the hacker tried to create a mass sense of confusion at all times so you never know whats real and what is not..
Krebs notes that the PlentyOfFish database has serious security problems and that the company stores user passwords in plaintext.