Security researcher Troy Hunt confirmed that the data in the dump was accurate by checking some of the details via the database of stolen credentials he maintains.
Advertisement
According to Matt Stevens, PR manager for Brazzers, “This matches an incident which occurred in 2012 with our “Brazzersforum, ‘ which was managed by a third party”. It says the email stash probably came from an attack that used a vulnerability found within its forum code, which is provided by a third-party. Since user accounts were shared between the two platforms, that resulted in some Brazzers visitors being exposed, even if they never frequented the forum. The forum itself is now offline for maintenance, while Stevens says Brazzers has banned all inactive accounts among those leaked, to prevent them from being used again. Like previous breaches at websites GTAGaming and Epic Games, the data leak has been blamed on security flaws in a piece of forum-building software called vBulletin.
The accounts of almost 800,000 visitors of the popular porn site have been compromised in a data breach.
If you signed up for a Brazzers forum account, you are encouraged to change your passwords everywhere you reused them.
As of Tuesday afternoon the Brazzersforum was unavailable to users. Numerous entries were either duplicated or inactive accounts.
There’s also the issue if you use the same password or username for other accounts such as your Facebook, email or internet banking.
“We’ve seen a real spate of vBulletin breaches where the software had been left pretty much unattended and unloved”, he added.
Users of a porn site have fallen victim to the latest major online security breach.
Advertisement
A recent breach of a Grand Theft Auto fan site originated from vulnerabilities with vBulletin, and the software has been involved in many other breaches too.
