A very well-regarded hacker has leaked this week the details of far more than 2.28 million end users registered on MeetMindful.com, a courting website established in 2014, ZDNet has discovered this week from a security researcher.
The dating site’s details has been shared as a cost-free obtain on a publicly obtainable hacking forum regarded for its trade in hacked databases.
The leaked data, a 1.2 GB file, seems to be a dump of the site’s people database.
The articles of this file consists of a wealth of data that end users supplied when they established up profiles on the MeetMindful web site and cellular applications.
Some of the most delicate info factors incorporated in the file incorporate:
- Serious names
- E-mail addresses
- Metropolis, point out, and ZIP facts
- Entire body specifics
- Courting choices
- Marital position
- Beginning dates
- Latitude and longitude
- IP addresses
- Bcrypt-hashed account passwords
- Facebook consumer IDs
- Facebook authentication tokens
Messages exchanged by buyers were not incorporated in the leaked file nevertheless, this does not make the full incident significantly less sensitive.
Although not all leaked accounts have total specifics incorporated, for many MeetMindful customers, the furnished information can be utilized to trace their dating profiles back to their actual-planet identities.
When we reached out for remark to MeetMindful on Thursday through Twitter, a MeetMindful spokesperson redirected our request to an e-mail tackle from wherever we have not read back again for 3 times.
In the meantime, the discussion board thread in which the MeetMindful info was leaked has been viewed much more than 1,500 periods and most very likely downloaded, in quite a few circumstances.
The information is nonetheless obtainable for down load on the community file-internet hosting web site the place it was in the beginning uploaded.
The site’s data was unveiled by a menace actor who goes on the internet as ShinyHunters, who previously this week also leaked the aspects of millions of people registered on Teespring, a world-wide-web portal that lets end users make and market personalized-printed clothing.
A request for comment despatched to an e mail handle previously utilized by ShinyHunters was not answered.
The leak of this highly delicate facts signifies a looming problem for the site’s customers and the principal reason why MeetMindful requires to notify account holders.
More than the past few decades, a lot of cybercrime groups have engaged in a exercise called sextortion, in which they consider data leaked from relationship websites and contact website buyers, threatening to expose their relationship profiles and history to family members or get the job done colleagues until they’re paid a ransom demand.