The attack compromised the data of over 360 million users.
By Jack Dawes on April 11, 2026
All featured products are selected by our editors. Purchases made via links may earn Mashable an affiliate commission.
Every key online dating platform has faced cyberattacks aimed at accessing private data, but the breach on AdultFriendFinder in October 2016 stands out for its severity and public impact. It revealed data from over 360 million users, affecting sites in the FriendFinder network, making it one of the largest breaches ever. Email addresses, usernames, passwords, sexual orientations, and languages over AFF’s history were exposed. The company’s outdated security, like SHA-1 cryptographic hashing and plain-text password storage, was a concern.
Thankfully, FriendFinder Networks responded seriously, enhancing their security protocols. Here are three significant changes they made:
1. **Improved Database Security:** A single-lock safe in 2016, AdultFriendFinder now uses advanced encryption, including “salted hashing,” to secure passwords, ensuring no shared vulnerabilities.
2. **External Security Experts:** Recognizing internal limitations, AFF engaged cybersecurity firms like Google’s Mandiant to address potential vulnerabilities in coding, structure, and practices.
3. **Mandatory Password Resets:** To counteract potential risks, AFF enforced regular password changes, standardizing this approach to combat vulnerabilities from other data leaks or hardware malware.
Since AFF’s last breach will be a decade past, their ongoing cybersecurity efforts are commendable, benefiting modern users significantly.
Topics: [Apps & Software](https://mashable.com/category/apps-software), [Cybersecurity](https://mashable.com/category/cybersecurity)