Ziften Endpoint Security Would Probably Have Prevented Adult Friend Finder Hack – Chuck Leaver

Written By Chuck McAuley And Presented By Chuck Leaver Ziften CEO

Endpoint Security Is The Very Best Friend For Adult Friend Finder

Adult Friend Finder, an online “dating service” and its affiliates were hacked in April. The leaked information consisted of charge card numbers, usernames, passwords, birth dates, address details and individual – you understand – preferences. What’s frequently not highlighted in these cases is the monetary value of such a breach. Lots would argue that having an email address and the associated data might be of little worth. However, the same way metadata collection offers insight to the NSA, this type of information supplies opponents with plenty of leverage that can be utilized against the general public. Spear phishing becomes a lot easier when opponents not just have an email address, but likewise area, language, and race. The source IP addresses collected can even provide exact street locations for attacks.

The attack method deployed in this instance was not released, but it would be fair to assume that it leveraged a sort of SQL Injection attack or comparable, where the information is wormed out of the back-end database through a flaw in the webserver. Another possible methodology might have been hijacking ssh keys from a compromised admin account or github, however those tend to be secondary in most cases. In any case, the database dump itself is 570 megabytes, and presuming the data was exfiltrated in a couple of large transactions, it would have been extremely visible on a network level. That is, if Adult Friend Finder were using a service that supplied visibility into network traffic.

Ziften ZFlow ™ makes it possible for network visibility into the cloud to capture aberrant data transfers and credit to particular executing procedures. In this case, the administrator would have had two opportunities to notice the abnormality: 1) At the database level, as the data was extracted. 2) At the web server level, where an abnormal amount of traffic would be sent to a particular address. Organizations like Adult Friend Finder should get the essential endpoint and network visibility required to safeguard their consumers’ individual data and “hook up” with a business like Ziften.

Leave a Reply

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title="" rel=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>