Feds Probe Philanderers' Site Ashley Madison: Report

...

The United States Federal Trade Commission has launched an investigation into philanderers' dating site Ashley Madison, Reuters reported Tuesday.

The company, which suffered a massive data breach last year that resulted in extortion attempts and ruined lives, as well as class-action lawsuits, earlier this week announced that it hired a new CEO and a new president in April.

CEO Rob Segal and President James Millership also revealed that Ashley Madison had been using fembots -- computer programs responding like real women -- to conduct conversations with some of its paying male customers worldwide.

The fembots have been shut down, confirmed an Ernst & Young report commissioned by Ashley Madison's parent company, Avid Life Media.

The use of fembots might have triggered the probe by the FTC, which is tasked with guarding against consumer fraud, among other things.

The FTC declined to confirm or deny whether it is conducting an investigation, because "FTC investigations are nonpublic," spokesperson Jay Mayfield told the E-Commerce Times.

Ashley Madison did not respond to our request to provide further details.

Ashley Madison is seeking to rebrand itself as a service that promises discretion for participants in many types of adult dating -- not just affairs. A large number of its members are singles, according to the company.

Disclosures arising from the FTC's investigation will make it more difficult to reposition Ashley Madison as safe for customers, suggested Rob Enderle, principal analyst at the Enderle Group.

Ashley Madison "will want to create a new image -- but as the evidence from the investigation is shared, it will reinforce the old image, making it nearly impossible for the firm to successfully pivot," he told the E-Commerce Times.

On the other hand, the probe might spice up the firm's image. At the time it was hacked last July, Ashley Madison had about 40 million users; it now boasts more than 46 million.

Since the breach, Ashley Madison has stepped up efforts to secure its IT systems.

It hired cybersecurity firm Deloitte, whose experts apparently found several simple backdoors in its Linux servers.

Also, Ashley Madison said it expects to reach the first level of Payment Card Industry compliance by September, according to the Reuters report.

However, "if an adversary has access to the back-end systems, the masking of profile pictures doesn't provide much protection," noted Rick Holland, VP of strategy at Digital Shadows.

Masking is "a good step so long as it's part of a holistic approach to improving security," he told the E-Commerce Times.

"Every company is vulnerable to some degree to data breaches as long as there are people involved in the process, Enderle pointed out. "Given the value of information surrounding someone's extramarital affairs, I doubt Ashley Madison can afford security that would be good enough to truly ensure this wouldn't happen again."

Digital Shadows last fall discovered cybercriminal gang DD4BC was seeking to extort Ashley Madison breach victims, demanding they pay a ransom of one bitcoin for its silence. At least 17 victims paid up.

Two suspected members of the gang were arrested in January, Holland said, but "recently we've had clients report they were targeted by a copycat actor." It takes time for organizations to materially improve their security maturity, so "it's likely that Ashley Madison and Avid Media still have significant opportunities to mature," Holland remarked.

Richard Adhikari has written about high-tech for leading industry publications since the 1990s and wonders where it's all leading to. Will implanted RFID chips in humans be the Mark of the Beast? Will nanotech solve our coming food crisis? Does Sturgeon's Law still hold true? You can connect with Richard on Google+.

Categories
Guide
0 Comment

Leave a Reply

Captcha image


RELATED BY

  • 5300c769af79e

    What to expect at Google I/O 2016, and where to watch the best sessions

    You can also watch these events through the interactive Google I/O website.That’s because for the first time, Google unveiled the developer preview for Android N two months before I/O.
  • 5300c769af79e

    Google Nexus Smartwatches On The Way?

    Read Google is reportedly preparing two new Android Wear smartwatches, possibly carrying the Nexus brand, for a debut later this year.Following a path similar to that of its Nexus smartphones and tablets, two new wearables are being designed by Google but will probably be manufactured by an OEM partner, according to reports.
  • 5300c769af79e

    IBM Watson Health Tackles Diabetes

    To address the challenge, IBM Watson Health and the ADA are collaborating to apply Watson cognitive computing to the organization's massive library of information and data.It was one of several announcements from IBM aimed at improving research and care for diabetes patients.
  • 5300c769af79e

    The Cost of an Unintentional Insider Threat

    Download A high rate of Unintentional Insider Threats (UIT) sheds light on the demands of today's workplace culture in the United States.Work cultures are unlikely to change anytime soon, but there are tools and programs that can help any work environment with a UIT problem.