Raja Bhatia was the original CTO of Avid Media, Ashley Madison's parent company; in an email to Avid CEO Noel Biderman in the latest Ashley Madison dump, he hacked the back-end of Nerve, a competing dating site.
He describes Nerve's security as poor. He says he exfiltrated its entire database, and that he had the power to alter its customers' records: "Also, I can turn any non paying user into a paying user, vice versa, compose messages between users, check unread stats, etc." He also admits that Ashley Madison's security is poor, and that its users' passwords were stored unencrypted.
He asked Avid's PR team to get him in the media to discuss the hack of Grindr, another dating site.
Six months later, in May 2013, Biderman discussed whether he should disclose the vulnerability to Nerve.com.
“Should I tell them of their security hole?” he wrote Bhatia. There is no apparent response among the leaked emails.
Although the emails discuss setting up a phone call with Nerve.com, it’s not clear if ALM did disclose the vulnerability.
Neither Avid Life Media nor Bhatia responded to a request for comment from WIRED.
Ashley Madison Leak Reveals Its Ex-CTO Hacked Competing Site [Kim Zetter/Wired]
The Sackler family got richer than the Rockefellers through their role in creating and sustaining the opioid crisis, which took more American lives than the Vietnam war.
The U.S. Patent and Trademark Office denied Ohio State University’s trademark filing on the word “The.” The AP reports: OSU submitted the trademark application last month. The patent office cited the trademark appears to be used for “merely decorative manner” and as an “ornamental feature” that doesn’t appear to function as a trademark that would […]
Daniel Beckwitt, a channer with a trust fund, began digging a bunker under his house after his mother died. Driven by survivalist paranoia and reinforced in adjacent ideologies by like-minded internet users, he hired another young man, Askia Khafra, to dig in the growing tunnel system while he blew the days on Reddit and 4chan. […]
Your smartphone’s GPS is a modern necessity for some trips, but how do you use it safely? It’s been a problem ever since phones went mobile. A certain phone mount even shelled out the money for a commercial during the Big Game, so clearly there’s a market for the solution. Turns out there are a […]
There’s reading for pleasure, and then there’s reading for fuel; absorbing the great ideas in nonfiction books so you can apply them in your own life. In today’s hectic pace, it can be difficult to find the time to do that reading – especially for the entrepreneurs and professionals who can benefit the most from […]
Breaking into the big leagues as a project manager isn’t done overnight, but there are principles that anyone can learn, and they’re applicable to nearly any business. No matter what your field, if there are multiple teams working toward a common goal, you’re going to need a roadmap. The Project Management Professional Certification Training Suite […]