Popular "sex and swingers community" AdultFriendFinder has been the victim of a massive hacking attack involving a total of 412 million accounts, ZDNet reports. LeakedSource, a watchdog group, disclosed the data breach, calling it the "largest hack of 2016." LeakedSource says the hack occurred in October and affected a number of adult sites owned by the Friend Finder Network, including Penthouse.com, Cams.com, stripshow.com, and iCams.com. But most of the hacked accounts (339 million) were from AdultFriendFinder. The data includes names, email addresses, and passwords—a mix of encrypted and plain text versions. Security researchers were able to unscramble 99% of the leaked passwords.
Friend Finder Network has not acknowledged the breach, but reporters at ZDNet were able to independently contact some victims, who confirmed that their details had been lifted from the site. Worryingly, the hack appears to contain information from some 15 million "deleted" accounts for which AdultFriendFinder still maintained login information. The culprit behind the attack is unknown, although the security researcher who first reported a vulnerability at the site blames Russian hackers. The number of hacked accounts is about 10 times that of those affected in an Ashley Madison hack last year, and there's no speculation at this point about how many accounts might be bogus. Friend Finder Network got hacked last year as well.