SINGLE BUT LOOKING PEOPLE had another threat thrown at them this week, no, it's not crippling shyness, it's another attack on their digital data, however the victim firm says that none of its members have fallen for it.
Match.com has joined Ashley Madison and PlentyOfFish in spilling user data thanks to hackers and in this case malvertising.
Match.com and its users have been exposed to bad ads, according to security research. Malwarebytes was the outfit behind the security alert, and the firm went straight to Match.com and the Techworld website with its findings.
We too went to Match.com and it told us that despite the obvious opportunity to panic, it can find no customers that have been affected.
"We take the security of our members very seriously. Earlier today we took the precautionary measure of temporarily suspending advertising on our UK site whilst we investigated a potential malware issue. Our security experts were able to identify and isolate the affected adverts, this does not represent a breach of our site or our users' data," it said.
"To date we have not received any reports from our users that they have been affected by these adverts. Nonetheless, we advise all users to protect themselves from this type of cyber-threat by updating their antivirus / anti malware software."
Match.com is a dating site aimed at singles, which separates it from Ashley Madison, and is, by its own account, rather popular. Popularity brings attention, not all of it positive, and it seems that Match.com security has met its match.
The firm has, according to Malwarebytes, fallen victim to bad adverts, so-called malvertising, that look to part partner-less punters from their pennies.
Malwarebytes said that the hack is not the worst ever seen, but is bad enough. There are some 5.5 million users at risk from the attack, which is based on the Bedep trojan and can extend itself to user pockets and their privacy through the CryptoWall ransomware terror.
Malwarebytes said that there is low cost for attackers, but high returns. "The cost per thousand impressions for the booby trapped ad was only 36c, which is nothing compared to how much infected computers can bring in terms of revenues. For instance, CryptoWall demands $500 per victim," said Jérôme Segura, senior security researcher at Malwarebytes.
"We alerted Match.com and the related advertisers, but the malvertising campaign is still ongoing via other routes."
We contacted Match.com about this as the report spread, and the company said that it is aware of the information and that it takes security very seriously.
A spokesperson for Match.com told The INQUIRER: "We take the security of our members very seriously indeed. We are currently investigating this alleged issue." µ
Now you can watch documentaries about horribly disfigured people whenever you like
Brad to the bone
Being in a minority of one doesn't make you right
WeWork needs a rework