Ashley Madison data posted

Aardvark154

New member
Jan 19, 2006
53,768
3
0
The database of Ashleymadison is enormous, the potential for financial gain enormous, and there is an ethical basis for the hack - a site charging people who want to leave the site is wrong.
Charging people to delete their information when they wish to leave is unethical. But how on earth that provides an ethical basis for the hack when it is the customers who will suffer escapes me. The hackers are criminals pure and simple.
 

Aardvark154

New member
Jan 19, 2006
53,768
3
0
The CC information includes your real information so if you signed up as "Ottawa Super Stud" and gave your credit card they know from the credit card that "Ottawa Super Stud" is actually Peter MacKay, etc.
Perhaps it is the grass being greener, but somehow I doubt it when you have a wife as pretty as Mrs. MacKay.
 

eznutz

Active member
Jul 17, 2007
2,394
0
36
“I’m looking for someone who isn’t happy at home or just bored and looking for some excitement,” wrote one member who provided an address in Ottawa and the name and phone number of someone who works for the Customs and Immigration Union in Canada. “I love it when I’m called and told I have 15 minutes to get to someplace where I’ll be greeted at the door with a surprise—maybe lingerie, nakedness. I like to ravish and be ravished … I like lots of foreplay and stamina, fun, discretion, oral, even willingness to experiment—:)
http://www.wired.com/2015/08/happened-hackers-posted-stolen-ashley-madison-data/
 

roger20

self aware
Feb 21, 2004
178
0
16
Awh .... so you're a "man in black" spreading your propaganda and lulling the brainwashed masses back to sleep eh? :D
Don't know what that means but I'm guessing it's negative given the context?

I happen to work in IT (You don't have to believe me, it is what it is) so I know about that stuff is all. A text file is something you can read in Notepad in windows or cat in OSX, unix so there's no way to get an executable to run, hence no viruses. Get into downloading a program however and all bets are off. Simple, not lulling anyone into anything unless you have breasts and are lying in my bed. Sorry to dissapoint
 

AK-47

Armed to the tits
Mar 6, 2009
6,697
1
0
In the 6
I wonder if AM could be hit with a class-action lawsuit now because they failed to protect their members anonymity
 

GPIDEAL

Prolific User
Jun 27, 2010
23,359
12
38
The .asc files are just the signed version of the file to ensure that you got it from the right place as there's a bunch of different versions of the files online. The credit card information, emails, phone numbers etc... are in daily CSV files (comma seperate value file which is viewable in text or easier in a spreadsheet) from March 21, 2008 up to June 28, 2015 and that's what people are using to search. The other files are member logins which contains chat logs and stuff but that's in a mysql (database) dump.

BTW, IP addresses aren't linked to people, they're linked to companies who own (lease?) blocks from ARIN or another body. You might get issued the same IP each time sure, but only your ISP knows who's on the other end of it. When the cops hunt down a CP ring or whatever, they need to go to the ISP with a warrant, they just don't plug the IP from a blog into some database and figure out who you are!
Thank you but I thought I.P. addresses are linked to computers or better yet, accounts. I thought they were unique. Are you saying an ISP can have a single I.P. address for a city block?

Plus, many ISP contracts contain terms and conditions that deal with criminality or illegal acts. That is, if you use their services but commit a crime or illegal act, you may forfeit your right to privacy in a proper investigation (this clause is to cover their ass). I would expect that they require LE or a civil litigator to obtain a warrant or court order, respectively.
 

|2 /-\ | /|/

Well-known member
Mar 5, 2015
6,521
1,143
113
Thank you but I thought I.P. addresses are linked to computers or better yet, accounts. I thought they were unique. Are you saying an ISP can have a single I.P. address for a city block?

Plus, many ISP contracts contain terms and conditions that deal with criminality or illegal acts. That is, if you use their services but commit a crime or illegal act, you may forfeit your right to privacy in a proper investigation (this clause is to cover their ass). I would expect that they require LE or a civil litigator to obtain a warrant or court order, respectively.
OK then answer this, how does your bank know when you sign in from a different computer.

Some peoples WiFi are static and never change. Just keep track of your own and you'll see. Sometimes they do change but in the long run. We already discussed a scenario where you can pick up IP and relate it to a person through their email.

I.e. pretend a pretend person, say his name is Peter Fuckay is you neighbor, and let's say you guys share BBQ recipes from time to time. One time Fuckay decides to fuck you over really really good and fuck your wife when you're taking your kids to soccer practice. Somehow you find out..now you have his email and WiFi IP. Now the Ashley Madison hack contains IP addresses or say they target an adult escort review site. Somebody posts the CSV file and for the fuck of it you see Fuckays IP is there by performing a quick search and voila, the match around the same time you exchanged your BBQ recipes...do I need to keep going. You can do a lot of damage with this stuff in the wrong hands. Not spreading panic just keeping it real.
 

GPIDEAL

Prolific User
Jun 27, 2010
23,359
12
38
OK then answer this, how does your bank know when you sign in from a different computer.

Some peoples WiFi are static and never change. Just keep track of your own and you'll see. We already discussed a scenario where you can pick up IP and relate it to a person through their email.

I.e. pretend a pretend person, say his name is Peter Fuckay is you neighbor, and let's say you guys share BBQ recipes from time to time. One time Fuckay decides to fuck you over really really good and fuck your wife when you're taking your kids to soccer practice. Somehow you find out..now you have his email and WiFi IP. Now the Ashley Madison hack contains IP addresses or say they target an adult escort review site. Somebody posts the CSV file and for the fuck of it you see Fuckays IP is there by performing a quick search and voila, the match around the same time you exchanged your BBQ recipes...do I need to keep going. You can do a lot of damage with this stuff in the wrong hands. Not spreading panic just keeping it real.


Your bank knows its you from a different computer because they rely on log in info - your username and passwords, not your I.P. address. ALSO, if you log in from a different computer for the first time, it may ask that you answer a security question before allowing access.

And yes, I know that my ISP uses a dynamic I.P. address, however, this doesn't change the risk about working from a website or email address based on your real name that is linked to the particular I.P. address at the time.

(Incidentally, I believe a dynamic I.P. address is to prevent or make it more difficult for hackers from gaining access INTO your computer, but it wouldn't mask your real identity in an audit trail, if you disclose said identity within an email address or website url).
 

GPIDEAL

Prolific User
Jun 27, 2010
23,359
12
38
As soon as you have gone on the worldwide web .... you have already forfeited your right to ANY privacy.

Unless you have a top secret encryption program.....
https://en.wikipedia.org/wiki/NSA_encryption_systems

...... but even hackers get hacked ..... thank you Edward Snowden.:D
https://en.wikipedia.org/wiki/Edward_Snowden

Being hack proof and having privacy rights vis-a-vis your ISP or your bank etc., are separate issues.

You still have privacy rights. If those hacker cowards were caught, they would be prosecuted, sued and imprisoned.
 

|2 /-\ | /|/

Well-known member
Mar 5, 2015
6,521
1,143
113
Your bank knows its you from a different computer because they rely on log in info - your username and passwords, not your I.P. address. ALSO, if you log in from a different computer for the first time, it may ask that you answer a security question before allowing access.

And yes, I know that my ISP uses a dynamic I.P. address, however, this doesn't change the risk about working from a website or email address based on your real name that is linked to the particular I.P. address at the time.

(Incidentally, I believe a dynamic I.P. address is to prevent or make it more difficult for hackers from gaining access INTO your computer, but it wouldn't mask your real identity in an audit trail, if you disclose said identity within an email address or website url).

Sorry to disagree with you, and answer my own question, but here is the answer copied from the web
:eyebrows:
"Banks like BoA use a risk-based decision engine that examines several variables, including but not limited to:

Your visible IP address
Your brower's "signature," which incudes the user agent header and detectable display properties such as screen resolution
The presence of a persistent cookie
The presence of data in another persistent store, such as a Flash wallet token
The risk engine uses the above data and compares to various risk rules that are configured by the bank. Rules include IP geolocation and blacklisting, known browser security issues, and risk exposure particular to your profile (e.g. if you are a high wealth customer). The risk engine calculates a score and decides whether the prompt you for a second factor of authentication, which can sometimes be a one-time password or a KBA (knowledge based authentication) question (e.g. the name of your first pet).

Some banks will do this check only when you sign on. Other banks perform a contetxt-sensitive risk check with each and every transaction, e.g. if you are wiring a million dollars to an external account you are higher risk than transferring $10 to your loan account."
 

roger20

self aware
Feb 21, 2004
178
0
16
Your bank knows its you from a different computer because they rely on log in info - your username and passwords, not your I.P. address. ALSO, if you log in from a different computer for the first time, it may ask that you answer a security question before allowing access.

And yes, I know that my ISP uses a dynamic I.P. address, however, this doesn't change the risk about working from a website or email address based on your real name that is linked to the particular I.P. address at the time.

(Incidentally, I believe a dynamic I.P. address is to prevent or make it more difficult for hackers from gaining access INTO your computer, but it wouldn't mask your real identity in an audit trail, if you disclose said identity within an email address or website url).
The answer to all this stuff is cookies stored on your computer via your browser... The IP gets you close but because of proxies (reverse and forward), anything past your ISP can be clouded.

Similar to how at home, all your computer's/tablets etc are able to go onto the net behind your router... You don't have an internet facing IP for every device! They're all masked behind your router. Same with "stealing" your neighbors WiFi, it'll look like their traffic because it's coming from their router.

Cookies are unique to the browsing session and that's what your bank, eBay and whomever cares to use, uses.

Use your browser's incognito mode and you'll see out for yourself. Your IP will be the same but no cookies will be stored.
 

Burningrubber

ThickSmokefromMyRubber
Feb 13, 2013
154
0
0
The answer to all this stuff is cookies stored on your computer via your browser... The IP gets you close but because of proxies (reverse and forward), anything past your ISP can be clouded.

Similar to how at home, all your computer's/tablets etc are able to go onto the net behind your router... You don't have an internet facing IP for every device! They're all masked behind your router. Same with "stealing" your neighbors WiFi, it'll look like their traffic because it's coming from their router.

Cookies are unique to the browsing session and that's what your bank, eBay and whomever cares to use, uses.

Use your browser's incognito mode and you'll see out for yourself. Your IP will be the same but no cookies will be stored.
Great advise....thanks
 

rhuarc29

Well-known member
Apr 15, 2009
9,650
1,294
113
The chance of anybody spending time to hack TERB is small. TERB offers a legit service for people to pay for sex. Hackers are probably among TERB's biggest fans. There is little moral high ground or financial gain to be had by hacking TERB.
Was I the only one who got an email a few days ago from Fred saying TERB was hacked?
 

GPIDEAL

Prolific User
Jun 27, 2010
23,359
12
38
Sorry to disagree with you, and answer my own question, but here is the answer copied from the web
:eyebrows:
"Banks like BoA use a risk-based decision engine that examines several variables, including but not limited to:

Your visible IP address
Your brower's "signature," which incudes the user agent header and detectable display properties such as screen resolution
The presence of a persistent cookie
The presence of data in another persistent store, such as a Flash wallet token
The risk engine uses the above data and compares to various risk rules that are configured by the bank. Rules include IP geolocation and blacklisting, known browser security issues, and risk exposure particular to your profile (e.g. if you are a high wealth customer). The risk engine calculates a score and decides whether the prompt you for a second factor of authentication, which can sometimes be a one-time password or a KBA (knowledge based authentication) question (e.g. the name of your first pet).

Some banks will do this check only when you sign on. Other banks perform a contetxt-sensitive risk check with each and every transaction, e.g. if you are wiring a million dollars to an external account you are higher risk than transferring $10 to your loan account."

You asked from a DIFFERENT computer. Let's say that different computer has no cookies from a previous log in. They will rely on a successful log in. They can also ask you to answer back up or security questions, since there's no previous cookie stored.
 

GPIDEAL

Prolific User
Jun 27, 2010
23,359
12
38
Was I the only one who got an email a few days ago from Fred saying TERB was hacked?
I dunno but when I set up my Terb account, I might have used a different email than my usual ones, and if I don't log into it, I might never have seen that suspect email.

Are our registered email addresses within our profiles here on Terb?
 

GPIDEAL

Prolific User
Jun 27, 2010
23,359
12
38
The answer to all this stuff is cookies stored on your computer via your browser... The IP gets you close but because of proxies (reverse and forward), anything past your ISP can be clouded.

Similar to how at home, all your computer's/tablets etc are able to go onto the net behind your router... You don't have an internet facing IP for every device! They're all masked behind your router. Same with "stealing" your neighbors WiFi, it'll look like their traffic because it's coming from their router.

Cookies are unique to the browsing session and that's what your bank, eBay and whomever cares to use, uses.

Use your browser's incognito mode and you'll see out for yourself. Your IP will be the same but no cookies will be stored.

Does the cookie store your I.P. address too?
 
Ashley Madison
Toronto Escorts