Cheating Website Ashley Madison Hacked
Discussion
lambosagogo said:
Soov535 said:
It's clearly a very carefully and well executed smear campaign. The smearers (?) took her contact details, entered them into a website for middle aged sleazy types, hacked the security of said site, sat on the data for a month and then released her name in amongst many million others just so they could target her. They really pulled out all the stops - risking the ire of the US authorities just to get her. It's a good job she regularly searches the dark web for her details purely on the off-chance that she'd been subjected to such an elaborate sting. It's a jungle out there after all and it pays to be super-careful.Anyone suggesting there's a more straightforward explanation, I dunno, something involving extra-marital affairs maybe, is clearly barking up the wrong tree. Her explanation is airtight (or is that a dangerous phrase to use all things considered?)
sa_20v said:
Been available for a while - piratebay.co.in had it this morning.
For most, getting the data downloaded won't help them much - if you want to make sense of it throw the five tables into a database - mySQL recognises the .dump files without issue. Ignore transactions and the other zip file which just contains company documents.
As the hackers described, most of these desperate people were only fleeced and never actually liaised with a real woman!
It's a mySQL dump, hence why it doesn't have an issue importing it For most, getting the data downloaded won't help them much - if you want to make sense of it throw the five tables into a database - mySQL recognises the .dump files without issue. Ignore transactions and the other zip file which just contains company documents.
As the hackers described, most of these desperate people were only fleeced and never actually liaised with a real woman!
Apparently email addresses weren't sent a "click here to sign-up" validation mail, probably because the sort of person that signs up to that doesn't want a trail. That was a poor decision.
The claim that it's fake, and that the data comes from "other hacked sources - not AshleyMadison.com" is ambiguous. I believe they have several branded sites offering a similar service, probably all using the same back-end.
This comment on that mostly made up mail article made me laugh though,
"If you Googled me you would find all my personal details, including email address, and that's clearly what someone has done. It just shows how unsecure the internet is"
Yeah, it's the Internet that's 'unsecure' (sic) because you put all your details on it voluntarily you bellend.
"If you Googled me you would find all my personal details, including email address, and that's clearly what someone has done. It just shows how unsecure the internet is"
Yeah, it's the Internet that's 'unsecure' (sic) because you put all your details on it voluntarily you bellend.
rxtx said:
Apparently email addresses weren't sent a "click here to sign-up" validation mail, probably because the sort of person that signs up to that doesn't want a trail. That was a poor decision.
Except that, as it happens, it *does* provide some degree of plausible deniability for anyone who has an email address that ended up in the database.I doubt, however, that this was all part of some grand apocalypse-level master plan on the part of whoever designed the system in the expectation of a catastrophic security breach, rather than they were institutionally and habitually sloppy, and that this is just a chance outcome that might mitigate to a small degree what is, by any measure, a monumental multi-dimensional cluster-fook of epic proportions.
sa_20v said:
Surely not!
Alright alright eharding said:
Except that, as it happens, it *does* provide some degree of plausible deniability for anyone who has an email address that ended up in the database.
I doubt, however, that this was all part of some grand apocalypse-level master plan on the part of whoever designed the system in the expectation of a catastrophic security breach, rather than they were institutionally and habitually sloppy, and that this is just a chance outcome that might mitigate to a small degree what is, by any measure, a monumental multi-dimensional cluster-fook of epic proprotions.
I agree, that was just an accidental outcome from an initial sloppy design decision.I doubt, however, that this was all part of some grand apocalypse-level master plan on the part of whoever designed the system in the expectation of a catastrophic security breach, rather than they were institutionally and habitually sloppy, and that this is just a chance outcome that might mitigate to a small degree what is, by any measure, a monumental multi-dimensional cluster-fook of epic proprotions.
So I went to try their sign up procedure. You DO have to supply an email address - and, presumably, if you actually want it to work it would need to be a genuine one....or at least...one you can get to the contents of the Inbox.
This is where the wonderful services of mailinator (Google and read their FAQ) can be used to test such nonsense.
Those email addresses don't need to be genuine at all. However - the vast, VAST majority will be. Oops.
This is where the wonderful services of mailinator (Google and read their FAQ) can be used to test such nonsense.
Those email addresses don't need to be genuine at all. However - the vast, VAST majority will be. Oops.
eharding said:
Except that, as it happens, it *does* provide some degree of plausible deniability for anyone who has an email address that ended up in the database.
I doubt, however, that this was all part of some grand apocalypse-level master plan on the part of whoever designed the system in the expectation of a catastrophic security breach, rather than they were institutionally and habitually sloppy, and that this is just a chance outcome that might mitigate to a small degree what is, by any measure, a monumental multi-dimensional cluster-fook of epic proportions.
I would expect they considered this and went with the plausible deniability.I doubt, however, that this was all part of some grand apocalypse-level master plan on the part of whoever designed the system in the expectation of a catastrophic security breach, rather than they were institutionally and habitually sloppy, and that this is just a chance outcome that might mitigate to a small degree what is, by any measure, a monumental multi-dimensional cluster-fook of epic proportions.
rxtx said:
This comment on that mostly made up mail article made me laugh though,
"If you Googled me you would find all my personal details, including email address, and that's clearly what someone has done. It just shows how unsecure the internet is"
Yeah, it's the Internet that's 'unsecure' (sic) because you put all your details on it voluntarily you bellend.
It is almost impossible to keep your personal details private. If you sit and home and make no communications with the outside world then yes, you will have anonymity. "If you Googled me you would find all my personal details, including email address, and that's clearly what someone has done. It just shows how unsecure the internet is"
Yeah, it's the Internet that's 'unsecure' (sic) because you put all your details on it voluntarily you bellend.
rxtx said:
This comment on that mostly made up mail article made me laugh though,
"If you Googled me you would find all my personal details, including email address, and that's clearly what someone has done. It just shows how unsecure the internet is"
Yeah, it's the Internet that's 'unsecure' (sic) because you put all your details on it voluntarily you bellend.
And now we have websites set up where one can 'input your email address and see if it's in the Ashley Madison hack'."If you Googled me you would find all my personal details, including email address, and that's clearly what someone has done. It just shows how unsecure the internet is"
Yeah, it's the Internet that's 'unsecure' (sic) because you put all your details on it voluntarily you bellend.
Really? People are going to plug a genuine email address into a random website set up on the back of this hack? They deserve all they get
rxtx said:
I agree, that was just an accidental outcome from an initial sloppy design decision.
Or, it's planed design implemented to boost 'number of registered members'. Who cares about email address as long as they sign up with real (or at least valid/chargeable) credit card. Either way, guy made millions on the back of a promise that, for probably 95% of members, never materialized, who'll probably not go CAB to complain.Here's the serachable database.
This is genuine - I've checked it against the TOR dumps.
https://ashley.cynic.al/
This is genuine - I've checked it against the TOR dumps.
https://ashley.cynic.al/
Soov535 said:
Here's the serachable database.
This is genuine - I've checked it against the TOR dumps.
https://ashley.cynic.al/
What we need is a wildcard option for checking out those at the place you work This is genuine - I've checked it against the TOR dumps.
https://ashley.cynic.al/
- @domain.com
Davie_GLA said:
Soov535 said:
Here's the serachable database.
This is genuine - I've checked it against the TOR dumps.
https://ashley.cynic.al/
What we need is a wildcard option for checking out those at the place you work This is genuine - I've checked it against the TOR dumps.
https://ashley.cynic.al/
- @domain.com
Gassing Station | News, Politics & Economics | Top of Page | What's New | My Stuff