A properly-recognized hacker has leaked this week the particulars of more than 2.28 million customers registered on MeetMindful.com, a dating web page established in 2014, ZDNet has realized this week from a protection researcher.
The dating site’s knowledge has been shared as a free of charge down load on a publicly available hacking discussion board acknowledged for its trade in hacked databases.
The leaked facts, a 1.2 GB file, seems to be a dump of the site’s users databases.
The content material of this file consists of a wealth of information that customers offered when they established up profiles on the MeetMindful web site and cellular apps.
Some of the most sensitive facts factors incorporated in the file involve:
- Serious names
- E mail addresses
- Town, state, and ZIP facts
- Overall body particulars
- Courting preferences
- Marital status
- Delivery dates
- Latitude and longitude
- IP addresses
- Bcrypt-hashed account passwords
- Fb person IDs
- Facebook authentication tokens
Messages exchanged by users had been not bundled in the leaked file however, this does not make the total incident significantly less delicate.
Whilst not all leaked accounts have complete particulars bundled, for many MeetMindful customers, the presented information can be made use of to trace their dating profiles again to their authentic-environment identities.
When we reached out for comment to MeetMindful on Thursday by using Twitter, a MeetMindful spokesperson redirected our ask for to an e mail handle from in which we have not listened to again for 3 times.
In the meantime, the forum thread the place the MeetMindful info was leaked has been considered extra than 1,500 times and most possible downloaded, in a lot of situations.
The details is however accessible for obtain on the public file-web hosting web-site the place it was at first uploaded.
The site’s facts was unveiled by a threat actor who goes on the net as ShinyHunters, who earlier this week also leaked the particulars of hundreds of thousands of people registered on Teespring, a world-wide-web portal that lets buyers generate and offer personalized-printed clothing.
A ask for for remark sent to an e-mail tackle formerly applied by ShinyHunters was not answered.
The leak of this very sensitive facts signifies a looming concern for the site’s users and the key motive why MeetMindful requirements to notify account holders.
Above the earlier number of a long time, several cybercrime teams have engaged in a follow called sextortion, where by they just take data leaked from dating internet sites and get hold of internet site consumers, threatening to expose their courting profiles and background to family members or work colleagues except if they’re compensated a ransom demand from customers.