Fur Affinity

Fur Affinity operates as an online community platform catering specifically to enthusiasts within the furry fandom. Its core service revolves around facilitating the sharing and appreciation of user-generated content, primarily artwork submissions and personal profiles created by its members. The platform serves as a dedicated space for individuals interested in anthropomorphic animal characters to connect, showcase their creative work, and engage with others who share similar interests. This focus establishes it as a niche social network centered on a specific subculture.

The platform experienced a significant cybersecurity incident in May 2016. Attackers exploited a known vulnerability within the ImageMagick library utilized by the site. This initial breach enabled unauthorized access to Fur Affinity's source code, which was subsequently exfiltrated and distributed physically via USB sticks at an unspecified convention. Following this, the perpetrators launched a secondary attack targeting the site's operational integrity and user data. This attack resulted in the deletion of substantial amounts of user-generated content, including art submissions and profiles. Furthermore, attackers compromised user email addresses and password credentials stored as hashed and salted values. Site administrators responded by restoring operations from a backup and initiating a mandatory reset of all user passwords. While the backup restoration limited permanent data loss, the exposure of password hashes highlighted the ongoing risk associated with potential decryption efforts and credential reuse by malicious actors. The attackers were described as experienced despite researchers noting the exploit itself was relatively trivial to execute.