SAN FRANCISCO — More than 412 million names and passwords used to login to adult connection sites run by FriendFinder Networks may have been compromised, according to a site that posts information and data from breaches.
The Campbell, Calif.-based company runs several sites for adult social and sexual connections.
The largest breach, according to LeakedSource.com, was of 340 million credentials from Adultfriendfinder.com, which says it allows users to “find sex, hook-up, and chat.”
Others included 7.1 million users from Penthouse.com, 1.1 million from iCams.com and 1.4 million from Stripshow.com.
The stolen information includes usernames, passwords, and email addresses for users of the sites.
LeakedSource generally makes stolen credentials searchable on its site. However, in this case it said "after much internal deliberation by the LeakedSource team and for various reasons, we have decided that this data set will not be searchable by the general public on our main page temporarily for the time being.
FriendFinder Networks Inc. told Reuters and the Wall Street Journal that it was investigating reports of "potential security vulnerabilities” and was notifying affected users to give them information on how to protect themselves.
An emailed request for more information to FriendFinder Networks Inc. was not immediately answered.
AdultFriendFinder was also breached in May of 2015, when information including sexual preference, marital status and other personal data for as many as 4 million members may have been stolen.
According to a blog posted by LeakedSource on Sunday, the FriendFinder Network was hacked in October 2016 and 20 years worth of customer data was stolen.
If that number proves to be correct, it would make it the second-largest hack on record after the Yahoo data breach in September, which affected 500 million accounts.