Raphael Satter of Associated Press reports:
Users of a chat service linked to the heavily-trafficked YouPorn website have had their personal information compromised after a third-party service provider failed to secure its data, YouPorn’s owners said Wednesday.
Luxembourg-based Manwin Holding SARL said the chat site had been disabled and would remain offline until an investigation was carried out. Manwin spokeswoman Kate Miller stressed that the site was run by an outside company on separate servers and that there was no breach at YouPorn itself.
Update 1: Media sources put the number affected at 1 million: Techworld ITworld. A Swedish security expert writes “it seems like a careless programmer accidentally(?!) left debug logging on to a publicly accessible URL as early as November 2007, and it has been storing all registrations ever since.”