Adult Friend Finder and Penthouse hacked in largest personal data breach on record

Over 412m accounts from pornography sites and sex hookup service reportedly leaked as Friend Finder Networks suffers second hack in just over a year

Fuente: Adult Friend Finder and Penthouse hacked in largest personal data breach on record


Third-party Snapchat site claims pics were hacked from server | Technology | theguardian.com

Third-party Snapchat site claims pics were hacked from server | Technology | theguardian.com.

Developers behind Snapsaved.com, which stores Snapchat pictures, claim user photos were stolen – while another claim the site’s administrator gave access to hackers

The Snapchat logo: third-party sites have been hacked to reveal images that were meant to self-destruct.
The Snapchat logo: third-party sites have been hacked to reveal images that were meant to self-destruct. Photograph: Peter Byrne/PA

The owners of the Snapsaved site, from which a number of photos sent over the Snapchat service were leaked at the weekend, say that they were hacked to reveal the pictures.

The statement follows a claim by an unknown person who says that the photos which leaked out on Sunday were provided by the site’s administrator.

They also say that the distribution of the photos would be potentially harmful both to those pictured and to the wider internet because of its effects on personal privacy.

On Sunday, thousands of photos and videos from the Snapchat service were put online, apparently taken from sites including Snapsaved.com, which had allowed people to log in using their Snapchat username and password to offer desktop-based rather than handset-based access to the site – and also the chance to store photos, which are meant to be deleted within seconds of being viewed.

Snapchat blamed third-party apps, without naming Snapsaved, for the breach.

In a Facebook posting, an unnamed spokesman for the Snapsaved site says that “I would like to inform the public that snapsaved.com was hacked” due to a mistake in the setup of its web server. “As soon as we discovered the breach in our systems, we immediately deleted the entire website and the database associated with it,” the unsigned statement continues. “As far as we can tell, the breach has effected [sic] 500MB of images, and 0 personal information from the database.”

The rebuttal comes after another anonymous claim, made via a posting on the Pastebin site – commonly used by hackers to post claims and conquests – that the administrator of Snapsaved had provided one or more hackers with a way to browse the content on the site.

“The content released from this site was provided to us by the administrator of the site,” the writer claimed. “Users could freely browse all media on this website, and view as per user account.


Images from up to 200,000 teenagers leaked on to internet after users lured into saving images on Snapsaved.com

jennifer lawrence
It is suspected that those behind the Snapchat scam are linked to the people responsible for the collection and posting of nude photos taken by hundreds of celebrities, including Jennifer Lawrence. Photograph: Axelle/Bauer-Griffin/FilmMagic

Videos and pictures of as many as 200,000 teenagers posted via the Snapchat service and stored on a third party website have been put online, apparently by the same people who were behind the posting of nude celebrity photos in August.

The photos and videos were captured after some users of Snapchat – a mobile phone app which allows people to send photos to each other but which delete themselves within seconds of being viewed – were tempted into using a site called “Snapsaved.com”. That offered to let them use the service on a website on a desktop computer, rather than just on a mobile phone.

But the site appears to have been maliciously saving the users’ login details and storing the photos and videos that were posted. An app called Snapsave, which offers similar functionality but whose developer says it only stores photos on the user’s mobile phone, is not believed to be involved.

By getting a user’s username and password, the site could authorise itself to Snapchat’s servers, and receive or send pictures they viewed through it but could also store it without the knowledge of the user or Snapchat.

It is suspected, but not so far proven, that those behind the scam are linked to those responsible for the collection and posting in August of personal and often nude photos taken by hundreds of celebrities, including Jennifer Lawrence and Kim Kardashian. The celebrity photo leak began with discussions on one of the 4chan discussion forums, and the latest photos have also come via 4chan leaks.

After warnings appeared on the bulletin board 4chan on Friday that the photos would be leaked, a site went live on Sunday offering 13 gigabytes of content which was said to have been captured from users.


Is there a Rihanna sex tape? No, it's a malware scam on Facebook | Technology | theguardian.com

Is there a Rihanna sex tape? No, it’s a malware scam on Facebook | Technology | theguardian.com.

But it’s not as popular as the fake app pretending to tell you who’s been peeking at your profile

Clicking on a Facebook link to a 'Rihanna sex tape' won't end well.
Clicking on a Facebook link to a ‘Rihanna sex tape’ won’t end well. Photograph: Patrick McMullan Co./REX

There is no sex tape of Rihanna and her boyfriend doing the rounds online. You can’t see who’s been looking at your Facebook profile. And you can’t change your Facebook colour either.

This may all sound obvious, but according to antivirus firm Bitdefender, these are the most popular malware scams on the social network in 2014.

The company has published a list of the top 10 Facebook scams, with the fake app promising to tell you your Facebook views and visitors by far the most popular, accounting for 30.2% of bogus links it identified on the social network this year.

Clicking on any of them will lead Facebook users to sites that try to install viruses on their computers, as malware developers continue to seek new ways to spread their software to unsuspecting victims.

The chart is good news for Taylor Swift and Disneyland, who both featured in Bitdefender’s list a year ago. Swift’s non-existent sex tape and an offer of a free trip to Disneyland have fallen from the top 10 over the last 12 months.

“Why do people still want to see who has been taking a peek at their profile, despite all security warnings? I think they believe these are legitimate apps,” said chief security strategist Catalin Cosoi.

“This is social engineering at its finest – a challenging mental game that pushes the right psychological buttons. The baits have changed over time, with stalkers, peekers, admirers, overly attached girlfriends and exes haunting you, but the reason this scam works is simple: human nature.”