March 29, 2012

Military dating website says LulzSec hack didn't happen

A military dating website, which a band of hackers claimed this week to successfully infiltrate to pillage members' personal information, was not actually hacked, according to its administrator.

In a comment left on a website that chronicles data breaches, an unidentified admin for Tennessee-based E Singles Inc. denied that its website, MilitarySingles.com, was breached, despite claims to the contrary.

Hackers from the newly launched group LulzSec Reborn on Sunday exposed the email account information, including names, usernames, passwords and IP addresses, belonging to some 170,000 members of MilitarySingles.com, according to a Pastebin document.

But in the comment, left on DataBreaches.net, the admin said the hack never happened. Among the evidence, they said the number of members in the site's database did not match the number claimed to have been affected, and that its users' passwords are encrypted.

The publisher of DataBreaches.net, who uses the alias "Dissent," responded that she was unconvinced, both that the breach didn't happen and that the site's passwords are secure.

"If I seem skeptical, however, it's because the entries in the data dump do match the pictures your site displays of 'members online,'" Dissent wrote. "I have been covering this stuff for a while now, and frankly, have never known Anonymous-related data dumps to be fabricated. As to the passwords in the data dump, I ran a bunch of them through an MD-5 cracker and was able to figure out the passwords. If you used MD-5, please note it's no longer considered very secure."

Security firm KoreLogic, according to a tweet, corroborated those findings.

"There are some claims that MilitarySingles.com was recently hacked," said a Facebook post from MilitarySingles.com. "We want to assure all our members that these claims are false and that there is no evidence that such an event occurred. Furthermore, we want to assure all our members that our database is secure and that your passwords are encrypted."

Related Articles
Related Topics

More in News

Privacy-bolstering "Apps Act" introduced in House

The bill would provide consumers nationwide with similar protections already enforced by a California law.

Microsoft readies permanent fix for Internet Explorer bug used in energy attacks

Microsoft is prepping a whopper of a security update that will close 33 vulnerabilities, likely including an Internet Explorer (IE) flaw that has been used in targeted website attacks against the U.S. government.

Weakness in Adobe ColdFusion allowed court hackers access to 160K SSNs

Up to 160,000 Social Security numbers and one million driver's license numbers may have been accessed by intruders.