xbiz world
xbiz premiere

Report: Ashley Madison Data Leak Was an Inside Job

Report: Ashley Madison Data Leak Was an Inside Job

LOS ANGELES — If Internet security expert John McAfee is correct, the much publicized data breach of adult affair site AshleyMadison.com was an inside job.

In an article for International Business Times, John McAfee claims that Ashley Madison was not hacked, but its most private data — including sensitive consumer information — was stolen by a female employee of parent company Avid Life Media, who was working on her own.

McAfee has been analyzing the 40GB data dump, and determined that it was the result of a lone wolf attacker with intimate access to the company’s systems.

“A hacker is someone who uses a combination of high-tech cybertools and social engineering to gain illicit access to someone else’s data,” McAfee wrote. “But this job was done by someone who already had the keys to the Kingdom. It was an inside job.”

“Any adept social engineer would have easily seen this from the wording in the first manifesto published by the alleged hacking group,” McAfee added. “I was one of the first practitioners of social engineering as a hacking technique and today it is my only tool of use, aside from a smartphone — in a purely white hat sort of way.”

In his article, McAfee outlines the processes he used to make his assertions, and discusses the type of information he was able to glean from the data dumps, including the decoded password hash tables of every company employee, MySQL databases, office layouts, organization charts and every private email to and from the CEO — even the raw source code for all the company’s programs.

There was so much information in the breach, garnered from multiple systems, and with so much of it having no value to outside organizations, that it convinced McAfee that the breach was an inside job.

“These are just a few of the many strangely included files that would take even a top notch hacker years to gather, and seem to have little or no value,” McAfee explains. “Any reasonable cybersecurity expert would come to the conclusion that only someone on the inside, who could easily gain all of the files through deception and guile, could have done the job.”

As for those high-level emails, Krebs on Security is reporting that contained within in them are revelations that a former Ashley Madison exec had hacked a competitor’s website — grabbing its full user database.

Related:  

Copyright © 2026 Adnet Media. All Rights Reserved. XBIZ is a trademark of Adnet Media.
Reproduction in whole or in part in any form or medium without express written permission is prohibited.

More News

Utah VPN Rule Enforcement Paused in Aylo Lawsuit

Provisions of a new Utah law making adult websites liable if minors in the state circumvent geolocation efforts to bypass age verification, which were set to come into force on Wednesday, have been put on hold until Sept. 3.

JustFor.fans Launches 'JFF Create' iPhone App

JustFor.fans (JFF) has launched its new iPhone creator management app, JFF Create.

ShootXEvents Joins ASACP as Media Sponsor

ShootXEvents has signed on as an in-kind media sponsor for the Association of Sites Advocating Child Protection (ASACP).

Pornhub Unblocks UK Users on iOS Devices, Citing Apple AV Effectiveness

Pornhub parent company Aylo on Tuesday announced that users in the United Kingdom will once again be able to access the popular site if they are using Apple devices and have confirmed their age through Apple’s U.K. age-verification process.

North Carolina Weighing Tax on Brick-and-Mortar Sales of Adult Material

The North Carolina state legislature is considering a bill that would impose a new 10% tax on adult material sold by physical retailers in the state.

FSC Launches 'Know Your Rights' 1st Amendment Resource Page

The Free Speech Coalition (FSC) has launched "Know Your Rights," a resource page detailing First Amendment protest guidelines.

Utah VPN Rule for Adult Sites Takes Effect This Week

A new law in Utah comes into force Wednesday, making adult websites liable if minors in the state circumvent geolocation efforts to bypass age verification.

UPDATED: Court Approves Class Action in Labor Claims Against VMG

A U.S. district court has granted class certification in a civil lawsuit filed against Vixen Media Group (VMG) by retired performer Kenzie Anne, making it possible for additional performers to join in a class action against the company.

Brazil Invites Public Input on Guidelines for New Digital Law

Brazil’s National Data Protection Authority (ANPD) is soliciting public comments to help improve interpretation and application of the country’s Digital Statute for Children and Adolescents (Digital ECA), which requires adult websites to age-verify users located in Brazil.

X3 Expo Unveils Euro All-Stars for Inaugural Amsterdam Edition

X3 Expo, Hollywood's premier adult entertainment expo, makes its European debut at Passenger Terminal Amsterdam Sept. 11-12, bringing together fans, creators, and industry insiders for the Continent’s largest assembly of adult entertainment stars, alongside a dazzling lineup of attractions spotlighting the cutting edge of modern media and pleasure tech.

Show More