LUXEMBOURG—The Associated Press reported today that "a 17-year-old living in Morocco" asserting "allegiance to Anonymous" has claimed responsibility for the alleged hack of an online forum belonging to adult production company Brazzers that may have resulted in the compromise of "personal information" belonging to more that 350,000 members.
"The hacker who claimed responsibility for the breach told The Associated Press that he exploited a vulnerability in the site's code which he said was 'pretty easy to find,'" reported USA Today.
Another version of the same story added, "A small sample of the hundreds of thousands of pieces of user data allegedly compromised was posted to the internet earlier this week. Emails, usernames and encrypted passwords were divulged, and in some cases it was possible to infer users' full names and country of origin."
The alleged hack and release of information was done to alert the company to its security issues, said the 17-year-old, who told the AP in an email, "I didn't do that for any money."
Brazzers parent Manwin issued a prepared statement today that explains the steps the company is taking to address the situation. The statement is reprinted here in its entirety:
"We are currently investigating claims of user information being compromised.
"Security is a priority at all times, and we will ensure that all measures are taken to safeguard the integrity and non-disclosure of any information related to our users.
"The hacker may have accessed the Brazzers discussion forum through juggnetwork.com, a site that was never completed and deprecated. It is important to note that no credit card information was either accessed or disclosed.
"Affected members are being alerted of the security breach and assured that their billing and credit card information remains protected. We are also recreating memberships for those who prefer to cancel their original account. In addition, they have been given free memberships to Brazzers.com sister site Mofos.com, and offered discounted memberships to other Manwin owned exclusive websites.
"In this day and age security breaches happen at the highest levels of government, and in various types of businesses. Since 2001, The Convention on Cybercrime prohibits and protects against such acts.
"Just like all other international corporations and organizations, Manwin and its brands are committed to the Convention, and will collaborate with authorities to prevent and prosecute such activities.
"We consider this a cyber criminal act and are currently investigating the situation through appropriate international channels."