Even though there are many unknowns about the hack, analysts were able to draw some important conclusions that should be taken into account by any company that stores sensitive information.· Strong passwords are extremely important As was revealed after the attack, and despite most of the Ashley Madison passwords were protected with the Bcrypt hashing algorithm, a subset of at least 15 million passwords were hashed with the MD5 algorithm, which is very vulnerable to bruteforce attacks.
And the company’s investigation and security strengthening efforts continue to this day.
Not only have they cost Ashley Madison tens of millions of dollars, but also resulted in an investigation by the U. Federal Trade Commission an institution that enforces strict and costly security measures to keep user data private.
For example, Ashley Madison claimed that users could have their personal accounts completely deleted for $19.
However, this was not the case, according to The Impact Team.
Overall, respondents preferred free sites like Ok Cupid, Tinder and Grindr over paid sites like Match and e Harmony, in part because of the value.