xbiz world
xbiz premiere

Report: Ashley Madison Data Leak Was an Inside Job

Report: Ashley Madison Data Leak Was an Inside Job

LOS ANGELES — If Internet security expert John McAfee is correct, the much publicized data breach of adult affair site AshleyMadison.com was an inside job.

In an article for International Business Times, John McAfee claims that Ashley Madison was not hacked, but its most private data — including sensitive consumer information — was stolen by a female employee of parent company Avid Life Media, who was working on her own.

McAfee has been analyzing the 40GB data dump, and determined that it was the result of a lone wolf attacker with intimate access to the company’s systems.

“A hacker is someone who uses a combination of high-tech cybertools and social engineering to gain illicit access to someone else’s data,” McAfee wrote. “But this job was done by someone who already had the keys to the Kingdom. It was an inside job.”

“Any adept social engineer would have easily seen this from the wording in the first manifesto published by the alleged hacking group,” McAfee added. “I was one of the first practitioners of social engineering as a hacking technique and today it is my only tool of use, aside from a smartphone — in a purely white hat sort of way.”

In his article, McAfee outlines the processes he used to make his assertions, and discusses the type of information he was able to glean from the data dumps, including the decoded password hash tables of every company employee, MySQL databases, office layouts, organization charts and every private email to and from the CEO — even the raw source code for all the company’s programs.

There was so much information in the breach, garnered from multiple systems, and with so much of it having no value to outside organizations, that it convinced McAfee that the breach was an inside job.

“These are just a few of the many strangely included files that would take even a top notch hacker years to gather, and seem to have little or no value,” McAfee explains. “Any reasonable cybersecurity expert would come to the conclusion that only someone on the inside, who could easily gain all of the files through deception and guile, could have done the job.”

As for those high-level emails, Krebs on Security is reporting that contained within in them are revelations that a former Ashley Madison exec had hacked a competitor’s website — grabbing its full user database.

Related:  

Copyright © 2026 Adnet Media. All Rights Reserved. XBIZ is a trademark of Adnet Media.
Reproduction in whole or in part in any form or medium without express written permission is prohibited.

More News

Pornhub Awards Fiesta: A Night of Music, Dancing and Camaraderie

The eighth annual Pornhub Awards transformed Los Candiles Night Club in Glassell Park into a celebration of glamour, glitter, fashion and fame Wednesday night, as performers, creators and industry insiders toasted the year’s winners and danced late into the night while Diplo and Midnight Mary kept the party pulsing from behind the decks.

Ukrainian Parliament Rejects Porn Decriminalization Bill

The Verkhovna Rada, Ukraine’s parliament, on Thursday voted against passage of a bill that would have decriminalized the creation and distribution of pornography in that country — an activity that currently carries a prison sentence of three to five years.

FSC Launches Pride Fundraising Drive

The Free Speech Coalition (FSC) has launched its Pride Fundraising Drive to support its efforts on behalf of the LGBTQ+ community.

Cultpix Debuts AI-Generated Vintage Adult Films at Cannes

At this year’s Cannes Film Festival, B-movie streaming service Cultpix debuted a collection of AI-generated short films drawn from erotic magazine photo spreads published 50 years ago.

Ofcom Fines Youngtek Solutions $800K for AV Noncompliance

U.K. media regulator Ofcom on Wednesday imposed fines totaling 600,000 pounds (more than $800,000) against adult site operator Youngtek Solutions for failing to implement age checks and respond to information requests as required for compliance with the Online Safety Act.

Pornhub Launches Lesbian Site 'Pornhub Sapphic'

Pornhub has launched Pornhub Sapphic, a site dedicated to female and non-binary content and creators.

Brazil Invites Public Input on AV Guidelines

Brazil’s National Data Protection Authority (ANPD) on Friday launched a public consultation on developing guidelines for age verification mechanisms under the country’s Digital Statute for Children and Adolescents (Digital ECA), which requires adult websites to age-verify users located in Brazil.

Paysite Confidential: Inside the Creator Economy's Shift Toward Ownership

For years, the adult industry’s creator economy has been defined by platforms — powerful engines of discovery, monetization and scale that reshaped how performers connect with their audiences.

Senator Urges DOJ to Crack Down on 'Obscenity,' Attacks OnlyFans

U.S. Senator Jim Banks of Indiana this week urged Acting Attorney General Todd Blanche to reestablish the Department of Justice’s defunct Obscenity Prosecution Task Force in a letter that targets OnlyFans while repeatedly conflating “obscenity” with legal adult content.

UN Experts Urge US, Canada to Prosecute Aylo, Others for 'Exploitation'

GENEVA – The United Nations Office of the High Commissioner for Human Rights (OHCHR) has issued a press release in which two U.N. special rapporteurs, cited as experts, accuse Aylo and other companies of complicity in sexual exploitation.

Show More