While not as severe as the Ashley Madison hack it appears another website catering to “hookups” is having some issues, this time with a possible malware infestation. Dating site Plenty Of Fish seems to have had an advertisement run on it that redirected users through a maze of websites which left them with a Nuke Kit (nuclear browser exploit kit). The Nuke Kit infects computers through known vulnerabilities in plug-ins such as Flash and Java. Users who may have clicked the ad and did not have an anti-virus program, could have the malware present on their system.
The security firm Malwarebytes brought this covert malware installation to light, but it has not been able to capture the payload of the attack. A day before Malwarebytes discovered this attempt, though, it found an online banking Trojan known as Tinba that was also being distributed by the same ad network that (almost certainly unwittingly) placed the malware on Plenty of Fish.
While malware is a pain in the rear, it only affects those who have clicked the offending URL and who did not have an anti-virus program or an anti-malware program that could catch the malware. Users shouldn’t be worried that their personal details from the Plenty Of Fish servers is in jeopardy because they have not been hacked. Malwarebytes has notified Plenty Of Fish to make them aware of the issue and hopefully all will be resolved.