Hackers steal emails, private messages from hookup websites

Hackers have stolen e mail addresses, direct messages, and different private information from customers of two courting web sites, in accordance to an information breach skilled.

Earlier this week, somebody alerted Troy Hunt, the founder and maintainer of the info breach alerting web site Have I Been Pwned, that hackers had breached two courting web sites, CityJerks and TruckerSucker. Hunt informed TechCrunch that he analyzed the stolen information and located usernames, e mail addresses, passwords, profile photos, sexual orientation, customers’ date of delivery, their metropolis and state, their IP addresses, and biographies. The stolen passwords are scrambled with a weak algorithm that would probably be damaged and permit hackers to see the precise passwords.”

“It’s actually only a typical discussion board breach, albeit with tremendous delicate content material,” Hunt mentioned.

The delicate content material, for instance, embody hookup messages, equivalent to “I’ll b [sic] in Jackson on enterprise throughout the day on Nov.13 if message again I gained’t have a spot, will u?” and sexual preferences, equivalent to “trucker that loves suckin [sic] chubby guys,” in response to Hunt.

Hunt mentioned that the tipster informed him the breach was marketed on a hacking discussion board. TechCrunch independently verified that the info stolen from CityJerks and TruckerSucker is being marketed on the discussion board.

Picture Credit: CityJerks; TechCrunch Screenshot

In a publish promoting the info stolen from TruckerSucker, the vendor claims the database incorporates data on 8,000 customers. Within the publish about CityJerks, the vendor claims the database incorporates information from 77,000 customers.

CityJerks advertises itself as a spot to assist individuals discover companions to “masturbate mutually.”

“Masturbating mutually will join you and your sweetie, your companion or a fellow member on an ever deeper stage. Irrespective of how lengthy you’ve been collectively, you need that for certain! The suggestions from our clients speaks for itself,” the location learn.

TruckerSucker payments itself as a spot to “meet masculine males,” a spot for “REAL TRUCKERS and REAL MEN.”

The administrator of the 2 web sites didn’t reply to a request for remark.

Do you might have extra details about different information breaches? We’d love to listen to from you. You’ll be able to contact Lorenzo Franceschi-Bicchierai securely on Sign at +1 917 257 1382, or by way of Wickr, Telegram and Wire @lorenzofb, or e mail lorenzo@techcrunch.com. You may also contact TechCrunch by way of SecureDrop.