Home » Featured » Porn Site xHamster Hacked, More Than 380,000 User Accounts for Sale
Click Here To Hide Tor

Porn Site xHamster Hacked, More Than 380,000 User Accounts for Sale

Over 100,000 user accounts on the porn site xHamster are trading and selling on the Darknet right now.

Over 380,000 users have been found by the breach notification website LeakBase. The xHamster data base includes usernames, emails, and a score of not so hashed passwords.

More than 12 million people use xHamster, and although it’s a free subscription, users are encouraged to upload their own videos to the site. In a research analysis, 50 of the leaked user accounts were tried, and all 50 came back as active accounts, suggesting the leak is accurate.

Among the multitude of emails in the database, 40 were found to belong to the United States military, and another 30 to different United States, United Kingdom, and numerous other countries government agencies. Leakbase has said that the accounts started trading around the time a hacker came forward with a vulnerability he had found. None of the entities belonging to the emails in the database would respond for comments.

A separate analysis was done on the database to make sure that the accounts weren’t already publicly available on the open internet. The analysis provided that the information contained in the database was in fact freshly hacked, and newly leaked to the internet.

xHamster released a statement saying:

The passwords of all xHamster users are properly encrypted, so it is almost impossible to hack them. Thus, all passwords are safe and the user’s data secured.

A test ran on the hashes found in the database showed that this statement was false. The hashes were created with the oldest algorithm, MD5; which hackers have proven to be easily accessible to them. There are also several websites that enable the user to look up the plaintext version of already cracked hashes.

xHamster users should have been urged to change their passwords, even if they were “properly” encrypted. They also should have been told to change any other passwords on different websites that matched their xHamster password. Hackers have long been able to find ways to access other accounts belonging to users within leaked databases.

Yahoo and several others have seen massive data breaches recently, and hacking is on the rise in many forms these days. Releasing a statement saying your information and accounts are safe and protected after a major data breach such as this is simply foolish. Even companies that have more advanced encryption processes still urge users to change passwords after a breach.

If you don’t know anything about proper cyber security, there are plenty of websites that offer tutorials and even step by step instructions on the proper methods of cyber security. Too often people simply brush off the fact that they could very well become a hackers next victim. xHamster itself is doing so, even after the fact that they have just had a major data breach with poorly encrypted passwords.

Leave a Reply

Your email address will not be published. Required fields are marked *

*

Captcha: *