The information provided on this website does not, and is not intended to, act as legal, financial or credit advice; instead, it is for general informational purposes only. Information on this website may not be current. This website may contain links to other third-party websites. Such links are only for the convenience of the reader, user or browser; we do not recommend or endorse the contents of any third-party sites. Readers of this website should contact their attorney, accountant or credit counselor to obtain advice with respect to their particular situation. No reader, user, or browser of this site should act or not act on the basis of information on this site. Always seek personal legal, financial or credit advice for your relevant jurisdiction. Only your individual attorney or advisor can provide assurances that the information contained herein – and your interpretation of it – is applicable or appropriate to your particular situation. Use of, and access to, this website or any of the links or resources contained within the site do not create an attorney-client or fiduciary relationship between the reader, user, or browser and website owner, authors, contributors, contributing firms, or their respective employers.
Credit.com receives compensation for the financial products and services advertised on this site if our users apply for and sign up for any of them. Compensation is not a factor in the substantive evaluation of any product.
The breach occurred on eHarmony Advice, a dating advice site that is walled off from the rest of the eHarmony website and that “uses completely separate databases and web servers than eHarmony.com,” according to the release.
The hacker may have been working at this for several months. Brian Krebs, a former Washington Post reporter who now runs the blog Krebs on Security.com, writes that in December an Argentine man named Chris Russo claimed he had found vulnerabilities in eHarmony’s network that allowed him to see the passwords and other information of tens of thousands of the website’s users. Krebs says he passed the information on to eHarmony, but got no response.
Then, Krebs got a tip that eHarmony had been hacked. He checked out various sites where hackers try to sell stolen information, and found that someone using the name “Provider” was selling access to different parts of eHarmony’s website for between $2,000 and $3,000.
Krebs called Russo, who said he wasn’t responsible, but maybe one of his “associates” was.
Less than .05% of eHarmony’s users were possibly affected by the breach, according to the press release. The company is sending e-mails alerting those people to the problem and urging them to change their account passwords.
[Featured product: Concerned about ID theft? Shop for ID theft protection products on Credit.com.]
Image: David Goehring, via Flickr.com
October 19, 2023
Identity Theft and Scams
May 17, 2022
Identity Theft and Scams
May 20, 2021
Identity Theft and Scams