More than 4,000 porn stars have had highly sensitive private information exposed online by an adult website.
Cyber security researchers vpnMentor, a VPN comparison site, claim they found an open folder on PussyCash’s Amazon web server containing 875,000 files.
PussyCash own multiple porn websites and hosts affiliation programs for multiple adult sites, paying webmasters for traffic sent to the sites through banners and exit traffic.
The leaked files included bio pages of the web cam models that detailed tattoos, name, place of birth, sexual fantasies, favourite sexual positions as well as videos, marketing materials, photographs, clips and screenshots of video chats as well as scans of documents including driving licences, model release forms, social security numbers and birth certificates.
The affected porn stars were mainly from north America but also from Latin America, the Czech Republic and Hungary.
Members
PussyCash currently have more than 66 million registered members on their webcam chat arena, ImLive.
Their other websites include Sexier.com, FetishGalaxy, Supermen.com, Shemale.com, CamsCreative.center, forgetvanilla.com, idesires.com, Phonemates.com, SuperTrip.com, and sex.sex sites. PussyCash also has BeNaughty, Xtube, and Pornhub as partners.
The research team at vpnMentor discovered what they classify as a leaking S3 Bucket with 19.95GB of visible data on an Amazon server.
The live webcam porn network, said there was no evidence anyone else had accessed the folder.
And said it had it removed public access as soon as it had been told of the leak.
PussyCash said: “Privacy and the protection of user data is a top priority and concern for us.
“For this reason, we acted promptly and removed public access to the open folder as soon as vpnMentor alerted us to this fact.”
Access
In a blog however, vpnMentor said that anyone with the right link could have accessed 19.95GB of data dating back over 15 years as well as from the past few weeks, including contracts revealing more than 4,000 models’
It was also feared that the leak represented a potentially “severe threat” of identity theft, scams, public humiliation, blackmail, extortion, stalking, job loss, and embarrassment.