Muslim Match, a religious dating site, has suffered a data breach that exposed about 150,000 user accounts. More than 700K private messages were posted online as well.
Privacy activist, ‘TheChthulu' noted the breach on his twitter account. Troy Hunt has uploaded the data from the breach to his site “Have I Been Pwned?”, which included usernames, email addresses, IP addresses, chat logs, locations and hashed passwords.
Researchers at Motherboard correlated the user names with the data, analysed the IP addresses and determined that users were spanning worldwide in countries such as the UK, US, Pakistan and others. Six of the eight documents in the database were found in SQL format, suggesting that the hackers used SQL injection to access the database.
“I feel disappointed but the site didn't seem to be secure in the first place. They never used https,” said Zaheer, a current Muslim Match user, speaking to Motherboard.
Another user called Rook found the news to be “very scary. There is so much intimate information placed on [this] website to begin with, when you are genuine about finding a perfect match.”
The dating site is not currently accessible to users as it is taking a short break for Ramadan.