Data from nearly 800,000 accounts of porn site Brazzers appears online

The details of nearly 800,000 accounts of porn site Brazzers have surfaced online. The data dump could be traced back to a hack of the site’s forum in 2013, but also account details of people who have never signed up for the forum are in between.

It concerns 790,724 email addresses, usernames and passwords in plain text. The data was provided to Motherboard for verification by the site Vigilante, which specializes in publishing data breaches. A similar site, Haveibeenpwned, verified the vulnerability and added it to its database.

The dataset that Vigilante got hold of actually contains 928,072 items, but many of them are duplicates. According to the site, it is a dump from 2013 and in a response, a Brazzers spokesperson says that the case resembles a hack of the Brazzers forum in 2012. At the time, the perpetrator managed to abuse a vulnerability in vBulletin, Brazzers himself would have not been vulnerable.

“That said, we shared user accounts between Brazzers and the Brazzers forum for ease of use,” said the porn site’s spokesperson, who guarantees security measures are in place. As a result of this sharing, the account details of users who have registered for the site but never registered for the forum have now come online. The Brazzers forum is showing a maintenance notice at the time of writing.

In 2012, Brazzers was also the victim of another hack. A 17-year-old acting on behalf of Anonymous then hacked a no longer active site, looting data from 350,000 accounts.