IBill Denies Exposing 17 Million Customers' Data

DEERFIELD BEACH, Fla. — IBill denied allegations the company leaked credit card information that may have eventually made its way onto the Internet and into the hands of fraud artists and spammers.

Wired News reported Tuesday afternoon that 17 million customers of the third-party processor have had their personal information released over the Internet.

Further, security experts said in the report, the data is being bought and sold in a black market made up of thieves.

In an interview with XBiz, Interactive Brand Development President Gary Spaniak denied the allegations and said the Wired story “makes no sense.”

IBD owns iBill and has additional investments, including a 34.7 percent equity in Penthouse Media Group Inc. and an interest in Interactive Television Networks Inc., formerly XTV.

“We don’t even have 17 million customers,” Spaniak said. “The FBI reached us two weeks ago, regarding this claim. I don't know where these companies [in the Wired story] got their information.”

Wired said the transactions documented in the database are dated between 1998 and 2003.

Spaniak, in a later interview, said iBill since its inception has less than 10 million unique customers.

The security experts said in the article that the stolen data includes names, phone numbers, addresses, email addresses and IP addresses.

They also said that other fields in the compromised databases appear to be logins and passwords, credit card types and purchase amounts, but credit card numbers are not included.

The iBill customer data were allegedly discovered separately by two security companies while conducting routine research into malware.

Secure Science Corp. found the first data file containing records on 17 million individuals on a private website set up by scammers, the report said. The site was part of a so-called "phishing" scheme.

Another company, Sunbelt Software, found an additional list of slightly more than 1 million individual entries labeled Ibill_1m.txt on a spamming website, the report said. That list also appeared to date from 2003.

Secure Science found its data in February 2005 and reported it to the FBI, the company said.

The FBI, Sunbelt and Secure Science did not return calls Tuesday night to XBiz.

Copyright © 2025 Adnet Media. All Rights Reserved. XBIZ is a trademark of Adnet Media.
Reproduction in whole or in part in any form or medium without express written permission is prohibited.

More News

Texas Resumes AV Lawsuit Against Aylo Following SCOTUS Decision

A district court judge in Texas has unfrozen the state’s $1.6 million lawsuit against Aylo for allegedly failing to comply with age verification requirements, Bloomberg Law is reporting.

JuicyAds Wins Trademark Infringement Case Against Fraudulent Domain

JuicyAds has won its World Intellectual Property Organization (WIPO) case against a website using a similar domain to impersonate the company's site and defraud customers.

Anissa Kate, Jordan Starr Top AEBN for Q2 of 2025

AEBN has published its top-selling stars for the second quarter of 2025, with Anissa Kate landing atop the leaderboard for straight theaters and Jordan Starr heading up the gay rankings.

AEBN Reveals Eva Maxim as Top Trans Star for Q2 of 2025

AEBN has published its top trans stars list for the second quarter of 2025, with Eva Maxim landing atop the leaderboard.

France Reinstates Age Verification Rule for EU Sites

France’s highest court, the Council of State, on Tuesday reinstated age verification rules for EU-based sites under the country’s Security and Regulation of the Digital Space (SREN) law, ruling in favor of the French government and against Hammy Media.

Whisper Fans Joins Pineapple Support as Supporter-Level Sponsor

Whisper Fans has joined the ranks of over 70 adult businesses and organizations committing funds and resources to Pineapple Support.

Utherverse Launches 'Red Light Center' Virtual World

Virtual reality and metaverse technology company Utherverse has launched its new virtual world, RedLightCenter.io.

European Commission Approves AV Guidelines, Unveils Prototype App

The European Commission on Monday released its final, approved guidelines for protecting minors online under the EU’s Digital Services Act (DSA) and made public a “white label” age verification app intended to help sites and platforms comply with age verification rules under the DSA.

Show More