Security breach: Porn sites turn out to be too revealing
The industry is shuddering because the trust of its clients is essential to success.
NEW YORK - Consumers of Internet pornography who secretly signed up for memberships on adult-oriented Web sites in the last few months may be in for a shock: Some of their personal information, including e-mail addresses, may have been compromised by a security breach.
Internet security breaches have become increasingly common as security software races to keep pace, said Linda Foley, who runs the Identity Theft Resource Center.
Although the latest breach, which potentially could affect tens of thousands of customers, reportedly did not involve the theft of credit-card information, it could nonetheless have a significant effect on the lucrative Internet pornography industry, according to those who monitor the market.
These observers note that online porn relies, as much as anything else, on the promise that its customers can enjoy anonymity as they indulge their favorite niche pastimes from the privacy of their own computers.
"It's a huge concern," said Jason Tucker, whose Falcon Foto company boasts one of the world's largest erotic libraries. "The relationship we have with our customers is based on trust. The industry's concern is, if that trust has been violated, we could see a drop-off in customers."
A Freehold, N.J., company called Too Much Media, which supplies the software tracking system used by hundreds of adult sites, reported that a list of its clients' user names and passwords was stolen. The company said no credit-card information was stolen.
"From what we have determined so far, whoever has done this was only seeking to harvest e-mail addresses for spam," said John Albright, the owner of Too Much Media, responding to e-mailed questions.
Albright said his company's software "is really an accounting package which handles the statistics and tracking for reseller programs. It does not process the transactions itself."
Some pornography customers already have reported that their e-mail boxes are getting hit with spam attacks.
The breach was first reported on the blog In Corruption We Trust, by Keith Kimmel, who has two adult Web sites and uses the software. Kimmel claimed that "tens of thousands" of users' personal data may have been accessed. Albright, however, said it was hard to determine how many people are affected.
The breach has raised serious alarm in the world of adult-oriented Web sites, with many concerned about the effect on customers if they learn that their most secret transactions are not so secret after all.
"It's supposed to be a hush-hush transaction," said Chad Belville, a Phoenix-based lawyer who represents many adult industry clients, and is involved in an unrelated court case against Too Much Media. "There's already a hesitation to use your credit card online, and even more hesitation on a porn site, and this is going to make sales more difficult."
Too Much Media supplies an administrative software program called NATS, for Next-Generation Administration and Tracking Software.
The site's clients including Porn Kings, Pornstar Dollars and Sex Stuff Sells. Many of these are affiliate sites that provide links to other smaller porn purveyors.
Albright said he first became aware of the breach in October and notified those clients he thought were affected.