Chuck Leaver – Adult Friend Finder Hack Avoidable With Superior Endpoint Security

Written By Chuck McAuley And Presented By Charles Leaver Ziften CEO

Endpoint Security Is The Best Friend For Adult Friend Finder

Adult Friend Finder, an online “dating service” and its affiliates were hacked in April. The leaked information consisted of credit card numbers, usernames, passwords, dates of birth, address details and personal – you understand – preferences. Exactly what’s often not highlighted in these cases is the monetary value of such a breach. Many would argue that having an e-mail address and the associated data might be of little worth. Nevertheless, the same way metadata collection supplies insight to the NSA, this type of info offers enemies with lots of leverage that can be used against the general public. Spear phishing becomes a lot much easier when opponents not only have an e-mail address, but likewise place, language, and race. The source IP addresses collected can even provide exact street locations for attacks.

The attack method released in this instance was not publicized, but it would be reasonable to assume that it leveraged a sort of SQL Injection attack or similar, where the data is wormed out of the back-end database through a defect in the webserver. Another possible methodology could have been pirating ssh keys from a jeopardized admin account or github, but those tend to be secondary in many cases. Either way, the database dump itself is 570 Mb, and assuming the data was exfiltrated in a few big transactions, it would have been extremely obvious on a network level. That is, if Adult Friend Finder were utilizing a service that provided visibility into network traffic.

Ziften ZFlow ™ enables network visibility into the cloud to capture aberrant data transfers and credit to particular executing processes. In this case, the administrator would have had 2 chances to see the problem: 1) At the database level, as the data was extracted. 2) At the web server level, where an abnormal quantity of traffic would be sent to a specific address. Organizations like Adult Friend Finder ought to get the necessary endpoint and network visibility required to secure their clients’ personal data and “hook up” with a business like Ziften.

~leaverchuck1


No Responses Yet to “Chuck Leaver – Adult Friend Finder Hack Avoidable With Superior Endpoint Security”

Leave a Reply