Home > Case Studies > Online Dating Sites and Data Breaches

Online Dating Sites and Data Breaches

By: Sarah Clark (ILEX) - Updated: 26 Oct 2012 | comments*Discuss
 
Online Dating Dating Site Hacker

One of the last places that you want your privacy to be compromised, apart from your bank account, is in your very personal life. But that’s what’s happened to some users of popular dating sites in recent months.

It highlights the need for vigilance in the information you give, as well as the fact that even secure sites can be compromised.

Which Online Dating Sites were Affected?

The popular dating site eHarmony was one of the sites which was affected by the security breach. As a result the site displayed a warning and asked members to consider changing their passwords.

The breach meant that users’ screen names, email addresses and even their passwords could be taken from the site and used to access their data. The breach wasn’t said to have affected very many of the site’s users, and the company maintains that only a a small percentage of users were asked to change their passwords.

The site that was the source of the problems was informational site eHarmony Advice, which apparently uses a completely separate database and web servers to the main eHarmony.com online dating site.

The hacker said to be responsible for getting into the system originates from Argentina, and was also said to be responsible for hacking into another online dating site.

He is said to have been arguing with the operators and appeared to be intent on highlighting the bugs he found. Whether this was for his own good rather than the millions of users of the site remains to be seen. He is also suspected of being behind a recent suspicious offer to sell a database which was said to be a copy of eHarmony’s compromised database – for a very large sum of money.

Plenty of Fish Lax on Password Security?

The very popular dating site Plenty of Fish has around 30 million users - but according to Internet security experts, the well-respected website is reported to be putting the security of users at serious risk by storing all their passwords in a text format instead of in an encrypted form. Some web users are now jokingly referring to the site as ‘Plenty of Passwords’

The recent headline-grabbing lapse in online security means that potentially, the Plenty of Fish site, along with any other dating sites that refuse to encrypt users’ passwords, is facing a risk of serious security breaches from repeated hacker attacks. Plenty of Fish has already been the victim of a hacker who managed to get hold of customer account information which includes people’s passwords and other personal information about them. There are claims that only a few hundred accounts were actually compromised, but if yours was one of them, it’s not likely to be much of a reassurance.

Security expert Brian Krebs had said previously that the security breach was simply a result of the vulnerable system and accused PlentyOfFish.com of violating what he called the ‘basic security rules that apply online’ when it decided to store the passwords of customers as plain text.

The founder of Plenty of Fish accused Krebs of being ‘out to get him’ and the story seems to have become very messy indeed with accusations of blackmail from the same Argentinian hacker alleged to be behind the eHarmony attacks flying around – and even at one point, allegations that Plenty of Fish users were being systematically killed off! Although neither of these allegations have been proved, they have been making their way around the online dating community and worrying people who previously thought that their intimate dating encounters were at least subject to a reasonable degree of privacy.

You might also like...
Share Your Story, Join the Discussion or Seek Advice..
Why not be the first to leave a comment for discussion, ask for advice or share your story...

If you'd like to ask a question one of our experts (workload permitting) or a helpful reader hopefully can help you... We also love comments and interesting stories

Title:
(never shown)
Firstname:
(never shown)
Surname:
(never shown)
Email:
(never shown)
Nickname:
(shown)
Comment:
Validate:
Enter word:
Topics
Latest Comments
  • GrahamH
    Re: An Example of a Data Protection Act Enquiry
    @Administrator - I think you need to get the grievance going. You wouldn't be able to put in a FOI request as…
    13 July 2018
  • Administrator
    Re: An Example of a Data Protection Act Enquiry
    I hope someone can offer some advice. A manager has made a systematic bullying attack on different people…
    13 July 2018
  • Laurie
    Re: Your Medical Records
    @cindy - I don't think they're going to read 'all' your records - they don't have time between patients. It's up to you to fill in the…
    9 July 2018
  • cindy
    Re: Your Medical Records
    on recent visit too my doctor he did blood test then wanted another one for the menopause all in my records i went through early menopause in…
    8 July 2018
  • Tom
    Re: Telephone Monitoring at Work
    Got a phone bill on my work phone. Paid in full and apologised. But before hand my manger called the number I was contacting and…
    5 July 2018
  • Ferrety
    Re: Your Medical Records
    Sorry if we're going over old ground here; I have been with the same private opticians since the mid 70's. The owner recently sold the…
    4 July 2018
  • Care
    Re: Employee Surveillance
    I work as a caregiver in home. I've worked for the same client for 3 years. It's a step mom and dad the son is who I care for he's 24 with…
    4 July 2018
  • Care
    Re: Employee Surveillance
    I work as a caregiver in home. I've worked for the same client for 3 years. It's a step mom and dad the son is who I care for he's 24 with…
    4 July 2018
  • Beth.B
    Re: Does Neighbour's Camera Contravene Privacy Rights?
    My housing association are video camera watching me i have done nothing wrong i am disabled and need…
    3 July 2018
  • YourPrivacy
    Re: Do They Have the Right to Use My Photo on Website?
    Hanban - Your Question:Hi I need your advice please. Previously worked for a company and employment…
    3 July 2018
Further Reading...
Our Most Popular...
Add to my Yahoo!
Add to Google
Stumble this
Add to Twitter
Add To Facebook
RSS feed
You should seek independent professional advice before acting upon any information on the YourPrivacy website. Please read our Disclaimer.