Exposed: YouPorn passwords in all their plain-text glory

[nsane.forums]

As one of the top 100 websites in the world, the free porn video website YouPorn has a lot of subscribers. And as of late Tuesday night, at least 6,400 of those subscriber's passwords were exposed in a data dump on Pastebin that paired email addresses with plain text passwords. The list of YouPorn logins is thought to have been captured from a public-facing server, leaving YouPorn a bigger share of the blame for permitting lazy security.

Naturally, this creates a problem for thousands of people who may want to keep their enthusiasm for erotica secret, and having an e-mail address connected with the site is certainly a breach of privacy on a grand scale. Even if those affected don't care who knows they frequent X-rated sites, there's still the danger that someone will use the plain-text password to access other accounts with more important information in them, as people tend to use the same passwords to login to multiple different Websites.

It appears that the dump is the work of an unknown hacker. While YouPorn appears to have shut down the breached server, the damage is largely done. Portions of the list have been published around the Internet, and analysis of the list is taking all kinds of permutations. OZ Dump Centa divvied up the e-mail addresses by provider (the largest portion of YouPorn accounts were linked to Hotmail addresses, followed by Gmail). Technology researcher Ashkan Soltani made a word cloud of the most popular stolen passwords. While YouPorn has not made a public statement about the breach, the data leak is a reminder that passwords should never be repeated across logins for different sites.

View: Original Article

[DKT27]

YouPorn drops the soap, massive amounts of user data stolen

YouPorn has accidently exposed the user names and passwords of more than one million accounts. The information was stored on a public facing server that is now offline

YouPorn, a top 100 website, has had its data exposed after it was discovered that one of its public facing servers contained a list of users’ email addresses, passwords and dates of birth. In an odd twist of fate, YouPorn finally found a way to literally screw its users.

According to NakedSecurity.com, the credentials of over 1 million users were found on a public facing server and are now being spread across the web. This is surely a case of where a users’ email is more valuable than the password itself as linking a login to an individual could impose significant personal damage.

YouPorn has shut down the offending server that contained the list of user names and passwords but the damage has already been done as the list is currently being passed around the Internet.

To make things even worse, all the data was stored as plain text, so there is no hiding behind an encrypted email address or password.

So there you have it, one of the largest porn sites on the net just shared over 1 million users’ email address and passwords with the world; so much for the private browsing session.

:view: View: Original Article

[stringy]

YIKES ! Im off things to do.

Maybe you could print the list of user names and and have a poll on the funniest porno log on name?

[manju]

i belived that the login name is in front of the e-mail :P

[Whi5t1eR]

This is well handy... i have forgot my password :lol: