Dating site data may have also been leaked – 400K. user addresses

The Raid Forums entry was posted last August. Publish data for 2016: name, surname, email. email address, encrypted password, date of registration and last date of login.

Commenting on this data, cybersecurity expert Marius Pareščius believes that the programmers showed only one table of data, which he has hacked. This is just one of the snippets.

“As I understand it, the data is probably from 2006, which is 10 years of data.

As with Citybee, only one of the snippets was shown at first, but if you’re interested in the full range of data, we’ll sell it for the money. In this case, exactly the same, you give part of the data to familiarize yourself and make sure that you really have it, and you treat the rest differently: you sell or give another part, ”he says.

In this case, the data will be made public free of charge.

“I think they have everything, not just user data. Only there is a slightly different option, this data leak is no longer on the forum, it is blocked. These are just fragments of what was left for you, not what you want to give away or sell. You will no longer be able to sell it, you can rest for a while, unless you connect with other connections and still have that data and then distribute it ”, warns the expert.

The interviewee highlights that dating portals collect a large amount of data about consumers, including payment: “As for the part of the payment, it is usually the following: a telephone number and a technical message alongside. This means that this phone number paid a lot for the SMS on that date, because the payments were probably SMS. Technically, you have a phone number and payment information. However, no service provider has card information except banks, as Visa and Mastercard have very strict rules and do not allow the storage of card data. “

However, M. Pareščius does not believe that Darnipora.lt collected data from personal documents.

Asked if it was real that he could have reportedly hit 400,000. user data, explain that this number is normal as it is a number of unique lines.

“It just came to our attention then. You can write down the names of other tables: current customers, inactive customers, and deleted customers. The sum of these three tables will be 400 thousand. The logic is this: there is a user who has registered and used it. , he paid the membership fee, his membership fee has expired, you deactivate it, after a while, if you do not pay and do not extend the validity of the questionnaire, you delete it ”, explains M. Pareščius.

He notes that the data was leaked or an attempt was made to distribute last August, but that doesn’t necessarily mean someone bought it.

“Based on the fact that the 2016 data is released, it appears that it was only in the archives. If you stole now before they are “hot”, interesting and relevant, then you put it on, not when it occurred to you. In this situation, either he got it from another place or it was hacked in 2016 and only now made it public, “he says.

When asked why it took programmers some time to publish the data in this case, the expert says the reasons may be different. One of them is the highest grades.

“It just came to our notice then. One may be due to forum ratings. You get ratings based on how much data you sell. As with the ad portal, the more ads you have, the better your ranking. The following are the various votes and comments. The more votes and comments or purchases you have, the higher the rating. Therefore, in individual cases they share data for free, in some cases they ask for money, “explains M. Pareščius.

A cybersecurity expert says the recent data breaches are just the beginning, soon, maybe even this week we’ll see more data breaches from larger users, which the programmers are already talking about in the same forum.

“This is the third public case, but there is more,” he says.

M. Pareščius is also supported by ESET Lietuva’s director, cybersecurity expert Tomas Parnarauskas.

“The Olybet leaker wrote an ambiguous message on the forum, but I think it is accurate: Lithuanian databases have not been relevant to anyone so far. I think we will have a lot of those cases because there is a great opportunity when you buy, you sell more expensive and you get attention.

Similar incidents and cases have happened quite a bit and more in the past. One of them is the case of Aesthetic Surgery. Apparently, the attention of journalists, the agitation of the issue in public space contributes to publicity or visibility, everyone begins to take an interest in it.

I have no doubt that we will have more than one similar incident where administrators have a copy somewhere where it has been hacked, leaked. Until now no one has been interested in it, it has not been possible to earn money with it, which shows that there is a simple desire to get rich, to obtain economic benefits ”, comments T. Parnarauskas.

Delphi you have not yet been able to contact the dating portal Darnipora.lt in the guide of the parent company “Internet Dating”. After receiving your comment, we will add.