{"id":45,"date":"2006-03-09T03:04:11","date_gmt":"2006-03-09T08:04:11","guid":{"rendered":"http:\/\/weblog.globaladultmedia.com\/2006\/09\/ibill-leaks-17000000-customer-records\/"},"modified":"2006-03-09T03:04:11","modified_gmt":"2006-03-09T08:04:11","slug":"ibill-leaks-17000000-customer-records","status":"publish","type":"post","link":"https:\/\/globaladultmedia.com\/weblog\/?p=45","title":{"rendered":"iBill leaks 17,000,000 customer records"},"content":{"rendered":"

iBill leaks 17,000,000 customer records<\/strong>
\n
\niBill leak info found via Boing Boing<\/a><\/p>\n

iBill, a company that handles credit-card transactions for porn sites (and others) has leaked the personal information of 17 million customers, information that’s being used by phishers, mortgage companies, and others:<\/p>\n

Independently, Wired News found that entries from the smaller cache are listed as mortgage leads on a spammer community site, specialham.com. (The website’s homepage offered no contact information and Wired News was unable to reach the registered owner of the domain, one “Juice Wobble.”) This suggests that the database was marketed as a lead list for outside businesses. “I can attest to the fact that this goes on with phishing groups,” says James. “They break in and steal leads and then sell those leads to (black market) leads companies, who resell them to legitimate companies, and sometimes the same companies they stole them from.”<\/p>\n

“The fact that a total of 17,781,462 iBill records have been found in the hands of criminal hackers is quite disturbing, be it an inside job or the successful work of criminal hackers,” says Thomas. <\/p>\n

Link for full article at wired<\/a>
\n
\nUpdate!<\/strong> – A day after posting the info here, ther appears to be a rebuttal… From AVN Online<\/a>:<\/p>\n

DEERFIELD BEACH, Fla. – Despite a salacious March 8 report by Wired that two lists containing personal information from more than 18 million former iBill clients escaped into the wild, both the Federal Bureau of Investigation and the beleaguered payment processor say there\u00e2\u20ac\u2122s nothing to worry about.<\/p>\n

The lists contain names, phone numbers, addresses, e-mail addresses, Internet IP addresses, and credit card types, and although they appear to be from online transactions, no one yet has been able to tie them to iBill. Seemingly, no one is trying.<\/p>\n

\u00e2\u20ac\u0153[We\u00e2\u20ac\u2122re not looking into it] because the information is two to three years old. It\u00e2\u20ac\u2122s too old for us to be able to investigate. No one keeps records for that long,\u00e2\u20ac\u009d says Special Agent Judy Orihuela, a spokeswoman for the FBI\u00e2\u20ac\u2122s Miami Division. \u00e2\u20ac\u0153We gave [the list] to iBill, and they are the ones who have to look at it to determine whether it was valuable or not.\u00e2\u20ac\u009d<\/p>\n

Apparently, it is not.<\/p>\n

\u00e2\u20ac\u0153This leak, as far as we\u00e2\u20ac\u2122re concerned, is total bullshit. There is no documentation,\u00e2\u20ac\u009d says Gary Spaniak Jr., president of IBD, the parent company of iBill.<\/p>\n

San Diego-based Secure Science Corporation, a technology firm specializing in protecting online assets, reportedly discovered the first list, which contains 17 million records, on a website set up by scammers. The list reportedly was discovered in February 2005.<\/p>\n

The FBI learned of the list two weeks ago, according to Orihuela. iBill first saw it on Wednesday.<\/p>\n

\u00e2\u20ac\u0153Basically, it\u00e2\u20ac\u2122s an Excel spreadsheet with names, addresses, and supposed IP addresses. Then it says the date and [type of credit card]. There\u00e2\u20ac\u2122s no card information, no social security numbers, no nothing,\u00e2\u20ac\u009d Spaniak says. \u00e2\u20ac\u0153The only thing on the entire list [to link it to iBill] is in the upper left corner: One of the boxes has the word iBill in it.\u00e2\u20ac\u009d<\/p>\n

The list contains listings for Diner\u00e2\u20ac\u2122s Club and Chinese credit cards, two forms of payment iBill never processed, according to Spaniak.<\/p>\n

Before receiving a copy of the list from the FBI, iBill received an offer of help \u00e2\u20ac\u201c for a fee \u00e2\u20ac\u201c from Secure Science.<\/p>\n

\u00e2\u20ac\u0153In my mind we were blackmailed,\u00e2\u20ac\u009d Spaniak says. \u00e2\u20ac\u0153They said, \u00e2\u20ac\u02dcWe found this information, and we can help [you] not have this information ever get out again. Hire us,\u00e2\u20ac\u2122\u00e2\u20ac\u009d Spaniak says. \u00e2\u20ac\u0153My attitude is \u00e2\u20ac\u02dcNo, we don\u00e2\u20ac\u2122t have any data leaks. I don\u00e2\u20ac\u2122t need to pay somebody.\u00e2\u20ac\u2122\u00e2\u20ac\u009d<\/p>\n

Secure Science did not return a request for comment.<\/p>\n

The second list, containing more than 1 million entries, reportedly was found on a spamming site last month by Clearwater, Florida-based anti-spyware firm Sunbelt Software.<\/p>\n

Representatives from Sunbelt also failed to return a request for comment.<\/p>\n

Admittedly, the current iBill can\u00e2\u20ac\u2122t guarantee the lists didn\u00e2\u20ac\u2122t originate from the company\u00e2\u20ac\u2122s previous owners. In fact, there have been rumors that \u00e2\u20ac\u0153iBill lists\u00e2\u20ac\u009d were floating around the online adult world for years.<\/p>\n

\u00e2\u20ac\u0153What was always talked about, but never really proven, is how the sales guys at iBill were selling the iBill email lists out the back door,\u00e2\u20ac\u009d says a rep for another billing company.<\/p>\n

InterCept Payment Solutions sold iBill to Media Billing, a Penthouse company, in March 2004, while iBill was in serious financial debt and being sued by its own shareholders. In January 2005, IBD finalized the purchase of iBill and Media Billing from Penthouse.<\/p>\n

The representative from another billing company says the rumored back-door sales were happening even before the InterCept era, when iBill was owned by its founders.<\/p>\n

In the present, iBill claims to have no security issues.<\/p>\n

\u00e2\u20ac\u0153First of all, we have a brand-new, state-of-the-art Cisco firewall system,\u00e2\u20ac\u009d Spaniak says. \u00e2\u20ac\u0153We have data officers. There\u00e2\u20ac\u2122s no way for this information to get out. Not one employee in the company has the ability to print a list like this.<\/p>\n

\u00e2\u20ac\u0153We went through a Visa inspection less than six months ago,\u00e2\u20ac\u009d he adds. \u00e2\u20ac\u0153We passed with flying colors.\u00e2\u20ac\u009d<\/p>\n

So what\u00e2\u20ac\u2122s next? The FBI\u00e2\u20ac\u2122s Orihuela says there is nothing for the FBI to investigate, so apparently lawsuits are all that remain to mark the passing of what iBill and the FBI consider a non-event. iBill plans to file suit against Secure Science, Sunbelt, and Wired, Spaniak says. <\/p><\/blockquote>\n","protected":false},"excerpt":{"rendered":"

iBill leaks 17,000,000 customer records iBill leak info found via Boing Boing iBill, a company that handles credit-card transactions for porn sites (and others) has leaked the personal information of 17 million customers, information that’s being used by phishers, mortgage companies, and others: Independently, Wired News found that entries from the smaller cache are listed […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"site-sidebar-layout":"default","site-content-layout":"","ast-site-content-layout":"","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","theme-transparent-header-meta":"","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"default","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"footnotes":""},"categories":[1],"tags":[],"class_list":["post-45","post","type-post","status-publish","format-standard","hentry","category-uncategorized"],"_links":{"self":[{"href":"https:\/\/globaladultmedia.com\/weblog\/index.php?rest_route=\/wp\/v2\/posts\/45","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/globaladultmedia.com\/weblog\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/globaladultmedia.com\/weblog\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/globaladultmedia.com\/weblog\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/globaladultmedia.com\/weblog\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=45"}],"version-history":[{"count":0,"href":"https:\/\/globaladultmedia.com\/weblog\/index.php?rest_route=\/wp\/v2\/posts\/45\/revisions"}],"wp:attachment":[{"href":"https:\/\/globaladultmedia.com\/weblog\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=45"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/globaladultmedia.com\/weblog\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=45"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/globaladultmedia.com\/weblog\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=45"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}