Skip to main content
  1. Home
  2. Web
  3. News

PornHub security breach turns out to be a well-executed hoax

By

south carolina porn blocker installed new internet connected devices pornhub
123RF
This past weekend, news broke that PornHub had been breached, allowing hackers to sell access to a subdomain to the site for a mere $1,000.

It turns out that story was just a hoax.

Recommended Videos

As reported by CSOOnline, the hacker, who goes by 1×0123 on Twitter, tweeted an image showing that he had gotten access.

#MossackFonseca privatehttps://t.co/aWiTdjfE88 pic.twitter.com/jCfd38UuPd

— 1×0123 (@1×0123) April 9, 2016

Turns out 1×0123’s claims were nothing more than hot air to scam bad guys. The hacker allegedly sold PornHub access to three people. Two people were sold shell access while one was sold injection script.

PornHub reached out to 1×0123 via XMPP, an instant messaging client, to try and resolve this issue. 1×0123 allegedly offered to help fix the vulnerability and give additional details for a fee of $5,000. It’s unknown if PornHub agreed to those terms and paid.

Here’s hoping PornHub didn’t end up paying, because after doing some digging, the site’s engineers started to see the holes in 1×0123’s claims. At first the company believed a test server to be compromised, then a non-production server, but neither were accessed. 1×0123 had provided the site with a copy of the shell he used to dump into the server. PornHub noticed that there was no way the file could have been uploaded due to file size restrictions with the avatars. Not only that, 1×0123’s file contained PHP code, but PornHub’s servers are not designed to execute PHP.

“Even if the server would accept this fake image file we don’t allow code to be executed as an image extension. He provided conflicting information and left the chat shortly after,” a PornHub spokesperson said.

PornHub released an official statement:

“The PornHub team investigated the claim from the hacker named 1×0123. Our investigation proved that while those screenshot might look realistic to people without knowledge of the underlying infrastructure, the attack as described by the hacker is not technically possible. This incident was merely a hoax and no PornHub systems were breached during those recent events. The safety and security of our users is PornHub top priority. We would like to remind everyone that PornHub has a public bug bounty program which can be used to responsibility report any legitimate vulnerabilities in exchange for bounty as high as $25,000.”

Well, that was a close one. Everyone can now sleep soundly knowing that the internet’s porn viewing habits are still a closely kept secret.

Topics
Imad Khan
Imad Khan
Former Digital Trends Contributor
Imad has been a gamer all his life. He started blogging about games in college and quickly started moving up to various…
How to deactivate your Instagram account (or delete it)
A person holding a phone with the Instagram app open on it.

Oh, social media. Sometimes it’s just too much, folks. If you’re finding yourself in a position where shutting down your Instagram account for a period of time sounds good, Meta’s powers that be have made it pretty simple to deactivate your Instagram account. It’s also quite easy to completely delete your Instagram, although we wouldn’t recommend this latter option if you plan on returning to the platform at a later date.

Read more
How to clear cookies
A person uses a tablet with an HP laser printer in an office.

Cookies are a convenient way to experience the parts of the internet you frequently visit. One can think of these non-edible artifacts as digital breadcrumbs for info you may not want to remember every time. But when your computer is tasked with remembering too many of these trail-markers, it can really slow down your machine. Regardless of the browser you’re using, it’s a good idea to clear your cookies every once in a while.

Read more
Best Buy Memorial Day sale: early TV, laptop, and appliance deals
Digital Trends Best Buy Prime Day Deals Alt

While Memorial Day is still several days away, there are a lot of excellent early Memorial Day deals you can pick up right now from Best Buy. That includes everything from the best TVs, the best Phones, the best Air Fryers, and even the best smart home devices out there, so you have a huge variety of deals to pick from. Of course, there is an overwhelming number of options out there, which is why we've scoured Best Buy for our favorite deals in various categories and collected them all below, so be sure to check out everything in detail.

Best Best Buy Memorial Day TV Deals

Read more