Whether a large amount of personal information leaked out of the world's largest married affair SNS was disclosed online

On July 21, 2015, the dating service for married people "Ashley Madison(Ashley · Madison) "in Europe, America and AsiaAvid Life MediaWas hacked, including credit card information, name and address, as well as individual sexual preferencesAbout 37 million personal information leaked outA case to happen happened. About one month has passed since the incident occurred August 18, the data that seems to have flowed out from Ashley Madison has evolved to the state that it is finally released on the Internet.

Data from hack of Ashley Madison cheater site purportedly dumped online [Updated] | Ars Technica
http://arstechnica.com/security/2015/08/data-from-hack-of-ashley-madison-cheater-site-purportedly-dumped-online/

Hackers Finally Post Stolen Ashley Madison Data | WIRED
http://www.wired.com/2015/08/happened-hackers-posted-stolen-ashley-madison-data/

Data that seems to have flowed out from Ashley Madison is said to be published on the dark web accessible only by Tor of the anonymous communication system. The published data includes files named "aminno_member_dump.gz", "aminno_member_email.dump.gz", "CreditCardTransactions 7z", "member_details.dump.gz", and contains personal information of users of Ashley Madison It is.


The file contains the name, address, phone number, credit card and other payment transaction data, and the number is about 32 million Ashley Madison users. Although password was included in published data, password is hashed with bcrypt algorithm, it is difficult to decrypt with general knowledge, but it is not difficult for hacker, but ashley · Madison Current users possessing an account may be illegally logged in.


Also, the disclosed personal information includes even the user's sexual orientation, "I am looking for a person who is not happy at home, or who wants to experience extraordinary experiences" "I love Foreplay very much" It seems that there are things that seems to be embarrassing, such as "I hit and attacked you, I like both."

However, Ashley · Madison often registers pseudonyms and fake e-mails due to the nature of the service called adultery SNS, and the e-mails disclosed are clearly individual owners such as ".gov" ". Mil" Those that are not accountable are included, and it is not clear whether the published data is the same as what was leaked.

Ashley · Madison knows about the authenticity of the public information of the user who is open to the public, "We know that the person who named the criminal who hacked our service hacked out the data stolen, and the published data We are investigating the truth of all of us. "