Independent infosec bod Bev Robb penned a blog post about the leak in mid-April but did not name the hacked site.Friend Finder Networks admitted the breach had occurred and told Channel 4 that it had launched a "comprehensive investigation with the help of a leading third-party forensics expert".The data is later sold to third parties for marketing purposes and to generate revenue.
"RDN/Trojan/Hacking File Detected" states that the system has been infected with an error known to gather various personal information (for example, logins/passwords, credit card information, browsing history, etc.) The message encourages users to eliminate this malware by contacting "Windows Technical Support" via a telephone number ("1-800-894-0551") provided.
Victims then supposedly receive help in resolving this issue.
Email addresses, usernames, postcodes, dates of birth and IP addresses of 3.9 million members have been exposed.
The UK's Channel 4 News, which came across the leak during a wider investigation into the dark web, broke the story of the Friend Finder breach on Thursday.
Some PUPs have official download/promotion websites, however, they are also proliferated using a deceptive marketing method called "bundling", and via the aforementioned ads. After uninstalling the potentially unwanted program, scan your computer for any remaining unwanted components or possible malware infections.