Skip to main content

PornHub security breach turns out to be a well-executed hoax

south carolina porn blocker installed new internet connected devices pornhub
123RF
This past weekend, news broke that PornHub had been breached, allowing hackers to sell access to a subdomain to the site for a mere $1,000.

It turns out that story was just a hoax.

Recommended Videos

As reported by CSOOnline, the hacker, who goes by 1×0123 on Twitter, tweeted an image showing that he had gotten access.

Please enable Javascript to view this content

https://twitter.com/1×0123/status/718760771887489024

Turns out 1×0123’s claims were nothing more than hot air to scam bad guys. The hacker allegedly sold PornHub access to three people. Two people were sold shell access while one was sold injection script.

PornHub reached out to 1×0123 via XMPP, an instant messaging client, to try and resolve this issue. 1×0123 allegedly offered to help fix the vulnerability and give additional details for a fee of $5,000. It’s unknown if PornHub agreed to those terms and paid.

Here’s hoping PornHub didn’t end up paying, because after doing some digging, the site’s engineers started to see the holes in 1×0123’s claims. At first the company believed a test server to be compromised, then a non-production server, but neither were accessed. 1×0123 had provided the site with a copy of the shell he used to dump into the server. PornHub noticed that there was no way the file could have been uploaded due to file size restrictions with the avatars. Not only that, 1×0123’s file contained PHP code, but PornHub’s servers are not designed to execute PHP.

“Even if the server would accept this fake image file we don’t allow code to be executed as an image extension. He provided conflicting information and left the chat shortly after,” a PornHub spokesperson said.

PornHub released an official statement:

“The PornHub team investigated the claim from the hacker named 1×0123. Our investigation proved that while those screenshot might look realistic to people without knowledge of the underlying infrastructure, the attack as described by the hacker is not technically possible. This incident was merely a hoax and no PornHub systems were breached during those recent events. The safety and security of our users is PornHub top priority. We would like to remind everyone that PornHub has a public bug bounty program which can be used to responsibility report any legitimate vulnerabilities in exchange for bounty as high as $25,000.”

Well, that was a close one. Everyone can now sleep soundly knowing that the internet’s porn viewing habits are still a closely kept secret.

Imad Khan
Former Digital Trends Contributor
Imad has been a gamer all his life. He started blogging about games in college and quickly started moving up to various…
PayPal vs. Venmo vs. Cash App vs. Apple Cash: which app should you use?
PayPal, Venmo, Cash App, and Apple Wallet apps on an iPhone.

We’re getting closer every day to an entirely cashless society. While some folks may still carry around a few bucks for emergencies, electronic payments are accepted nearly everywhere, and as mobile wallets expand, even traditional credit and debit cards are starting to fall by the wayside.

That means many of us are past the days of tossing a few bills onto the table to pay our share of a restaurant tab or slipping our pal a couple of bucks to help them out. Now, even those things are more easily doable from our smartphones than our physical wallets.

Read more
How to change margins in Google Docs
Laptop Working from Home

When you create a document in Google Docs, you may need to adjust the space between the edge of the page and the content --- the margins. For instance, many professors have requirements for the margin sizes you must use for college papers.

You can easily change the left, right, top, and bottom margins in Google Docs and have a few different ways to do it.

Read more
What is Microsoft Teams? How to use the collaboration app
A close-up of someone using Microsoft Teams on a laptop for a videoconference.

Online team collaboration is the new norm as companies spread their workforce across the globe. Gone are the days of primarily relying on group emails, as teams can now work together in real time using an instant chat-style interface, no matter where they are.

Using Microsoft Teams affords video conferencing, real-time discussions, document sharing and editing, and more for companies and corporations. It's one of many collaboration tools designed to bring company workers together in an online space. It’s not designed for communicating with family and friends, but for colleagues and clients.

Read more