Hacker tried to warn the company about their security issue but was ignored, so he used it against them. A hacker known under the name of TheNeoBoss apparently breached the Paper Street Media (PSM) network of several adult sites and is currently selling the database associated with the Team Skeet pornographic website, Vice reported yesterday.
“So recently I managed to breach TeamSkeet.com, the giant USA porn network,” the hacker wrote on the Dream Market Dark Web marketplace. “By purchasing this database, you will basically have free porn accounts for life, or you could sell them [the login details] separately.”
Hacker claims he has 237,000 user credentials
In his listing, TheNeoBoss claims to have a database containing the details for 237,000 Team Skeet users, which includes data such as usernames, plain text passwords, email addresses, real names, IP addresses, and real addresses.
Additionally, he’s also selling a database of 50,000 login credentials for other sites on the PSM network, 468,000 log lines of geo IP data regarding user logins, and another 426,000 log lines of failed login attempts.
TheNeoBoss is selling all this for 0.962 Bitcoin, which is around $400 at today’s price.
PSM denies getting hacked
Besides Team Skeet, the Paper Street Media network also includes other pornographic sites such as Exxxtra Small, Oye Loca, The Real Workout, POV Life, Hre Freshman Year, Self Desire, Teen Pies, She’s New, Teens Money, CFNM Teens, My Babysitters Club, LustHD, Step Siblings, Solo Interviews, Teen Curves, and some other more.
Contacted by Vice, PSM representatives denied the data breach, saying that the last time they detected such an incident was in 2008, when a hacker breached their site, stole the database, and tried to hold the company up for ransom. PSM’s CEO said they never paid and they never heard from the hacker again.
To confirm he had access to the Team Skeet website, the hacker showed the Vice reporter screenshots of the site’s backend panel, and yesterday, March 31, he even briefly defaced the site’s main page. TheNeoBoss says he tried to warn PSM of the website’s weakness, but since the company did not run a bug bounty program and also didn’t care about his findings, he used the SQL injection to steal their data instead.
Below is a partial screenshot of the hacker’s Dream Market listing for the Team Skeet database.
Working as a cyber security solutions architect, Alisa focuses on application and network security. Before joining us she held a cyber security researcher positions within a variety of cyber security start-ups. She also experience in different industry domains like finance, healthcare and consumer products.
