Men’s social networking web site and on the internet courting application Manhunt has experienced a information breach.
According to a security notice filed with the business office of the Washington legal professional general on April 1, the 20-12 months-outdated internet site was compromised in a cyber-attack that took place in February 2021.
An unauthorized third social gathering downloaded own details belonging to some Manhunt buyers after gaining obtain to the firm’s account credential databases.
The compromised database contained customers’ usernames, email addresses, and passwords. Following exploring that a breach had occurred, Manhunt done a compelled reset of all users’ passwords.
Manhunt began notifying people of the security incident final month. The organization did not say how lots of of the close to 6 million men who use the site had been impacted by the attack.
In the see of info breach, Manhunt unveiled that the own information of an estimated 7,714 Washington citizens had been influenced.
The breach was learned by Manhunt on March 2. An investigation into the incident uncovered that the attacker(s) experienced downloaded customers’ details at the beginning of February.
“On March 2, 2021, Manhunt identified that an attack received entry to a databases that stored account credentials for Manhunt customers,” wrote the firm in the see.
“The attacker downloaded the usernames, email addresses and passwords for a subset of our buyers. We right away took measures to remediate the risk and reset the passwords of impacted customers.”
Next the breach, Manhunt retained a 3rd-social gathering forensics specialist “to help us in investigating what occurred and confirm that there is no ongoing unauthorized access to our methods.”
The enterprise said that no proof had been located to propose that users’ images, messages, or other information from their profiles experienced been accessed by the hacker.
No payment card data was exposed due to the fact of the incident as Manhunt would not transmit or retail outlet this kind of info.
The firm warned end users to be on the lookout for phishing messages from risk actors impersonating Manhunt or proclaiming to have information about end users. Customers have been reminded that the enterprise would never question them for their password or other delicate details more than email.
Some parts of this article are sourced from:
www.infosecurity-journal.com