Private data security

Ashley Madison made dumb security mistakes, researcher says

Life is short. Have an affair. Write insecure software

A “ten minute search” by a security bod has provided some hints about the coding errors that might lie behind the now-infamous Ashley Madison hack.

While the author doesn't make the specific claim that these mistakes lie behind the Ashley Madison hack, it hints at the kind of inattention that opens sites to attack.

The London-based blogger, security consultant Gabor Szathmari, writes that the Ashley Madison source code “contains AWS tokens, database credentials, certificate private keys and other secret credentials”.