2 million user records stolen from top adult streaming site and sold on hacker forum

A database that purportedly belongs to MyFreeCams.com, one of the top adult chat and web streaming communities, is being sold on a popular hacker forum. According to the post author, the data was exfiltrated from the company servers in December 2020 by carrying out an SQL injection attack, and includes 2 million user records of MyFreeCams Premium members, including their usernames, email addresses, MyFreeCams Token (MFC Token) amounts, and passwords in plain text.

The author of the forum post is asking for $1500 in Bitcoin per 10,000 user records and claims that a single batch would net the buyers at least $10,000, which they could make by selling premium accounts with MFC Token (MyFreeCams’ virtual currency) balances on the black market.

We asked MyFreeCams if they could confirm that the leak was genuine, and whether they have alerted their members and models. The company swiftly responded to our requests and immediately notified affected users and reset their passwords. According to MyFreeCams, their investigation “traced this data to a security incident that occurred more than ten years ago in June 2010” and “the exploit that was used to obtain this data was closed shortly after it occurred.”

MyFreeCams is a live streaming ‘adult cam model’ website that offers explicit content intended only for mature audiences. 

Ranked as the 619th most visited website on the Internet based on monthly traffic, it’s one of the world’s largest adult streaming websites boasting nearly 70 million visitors each month. It is predominantly used by amateur webcam models to stream live shows and chat with site members who can purchase virtual MFC Tokens that they can use to tip the models or watch private shows.

Full article on https://cybernews.com/security/2-million-user-records-stolen-from-top-adult-streaming-site-myfreecams-and-sold-on-hacker-forum/

#myfreecams #sql #adult #streaming #hack #mindyourdata #yokdata #blog