Early bird prices are coming to an end soon... ⏰ Grab your tickets before January 17

This article was published on February 29, 2016

Hacker swipes 27m passwords from popular dating site proving we’ve learned nothing


Hacker swipes 27m passwords from popular dating site proving we’ve learned nothing

Mate1.com just proved that after the Ashley Madison hack, we’ve learned nothing.

A hacker on ‘Hell,’ a dark web hacking forum, claims to have gained access to over 27 million plaintext passwords from Mate1.com, which he says he later sold. The asking price was 20 bitcoin ($8,700) although the actual sales price is unknown at this time.

“Their server was compromised and the MySQL database was dumped,” the hacker told Motherboard. “I had shell/command access to their server.”

The shocking part is that it appears Mate1.com hosted the files in plaintext without any hashing. I tested this by creating an account and then clicking the “forgotten password” link only to have my full password emailed to me in plaintext.

If you or someone you know has a Mate1.com account, it’s time to change passwords.

The 💜 of EU tech

The latest rumblings from the EU tech scene, a story from our wise ol' founder Boris, and some questionable AI art. It's free, every week, in your inbox. Sign up now!

The dangerous thing about these hacks isn’t that someone has compromised an online dating account, it’s that many users share passwords between services, so a Mate1.com password might also be used for Gmail, Amazon, or a bank account.

Another Day, Another Hack: Hacker Claims to Have Sold 27M Mate1.com Passwords [Motherboard]

Get the TNW newsletter

Get the most important tech news in your inbox each week.

Published
Back to top