Dating website ashley
The hackers warned ALM that it would leak personal details of 36 million members unless ALM changed its policies -- specifically around letting users permanently delete their accounts.
ALM declined, the hackers leaked the data and scandal ensued as users panicked about their private lives and the internet raked through the dirty laundry.
Now, the Canadian company behind Ashley Madison, Avid Life Media (ALM), has been the subject of a scathing report from the Privacy Commissioner of Canada and the Australian Privacy Commissioner, criticising ALM's actions following the massive data breach.
(In July this year, ALM rebranded as Ruby, though the report refers to the company by its previous name).
According to Digital Shadows, around five million of the email addresses and passwords stolen and leaked in those breaches came from work accounts associated with the 1,000 largest organizations. technology newsletter."It’s perhaps of little surprise that the breaches impacting the global 1,000 companies the most were Linked In and Adobe—both services that employees can be expected to sign up to such services with their work accounts," said Michael Marriott, a research analyst at Digital Shadows, in a blog post on Wednesday.
"However, there were also less expected sources."In the case of Ashley Madison, a well-known adultery platform, 200,000 of the leaked credentials apparently involved corporate email accounts.
That’s exactly why I chose to start a business in the cannabis industry. There aren’t coaches or matchmakers specifically targeting sophisticated cannabis consumers.
She owns Highly Devoted, a cannabis-friendly dating site and life coaching company.However, it seemed likely that many passwords were re-used between corporate and third-party accounts where people used the same email addresses."Within the data you can see, in some incidences, password hints—sometimes 'the usual'," Marriott says.Digital Shadows tries to help its corporate clients make better security decisions, which includes figuring out when to force employees to reset their passwords on their internal systems.Major data breaches can provide a good reason for such a move.For its new research—which obviously helps tout it for business—the security firm looked at data from over 30,000 breaches that took place over the last couple years that subsequently surfaced online.