A hacker group calling itself the Impact Team targeted extramarital affair website AshleyMadison.com on Tuesday, dumping the account details of an estimated 37 million users.
A searchable list, linked by web security and risk management website CSO Online, reveals several idaho.gov addresses, including two from the Idaho Department of Lands and one each from the Central District Health District, Department of Environmental Quality, Department of Health and Welfare, Idaho Department of Correction and Idaho Transportation Department.
The site, a social network for users looking to cheat on their spouses, was threatened with a data breach last month unless owner Avid Life Media agreed to take down both AshleyMadison.com and related website EstablishedMen.com. When the demand went unmet, the Impact Team posted 35 gigabytes—9.7 GB compressed—to a dark web site.
The release came with a caveat that many accounts listed in the breach were false or set up by users but never active. However, CSO Online reported more than 15,000 accounts were registered using a .mil or .gov email address.
"We have explained the fraud, deceit, and stupidity of ALM and their members. Now everyone gets to see their data," the group wrote under the heading "Time's Up!"
Ashley Madison officials fired back, writing in a statement:
“This event is not an act of hacktivism, it is an act of criminality. It is an illegal action against the individual members of AshleyMadison.com, as well as any freethinking people who choose to engage in fully lawful online activities.”
With the authenticity of the leak confirmed by multiple independent sources, AshleyMadison.com users are scrambling to find out whether their data was compromised. International Business Times reports websites have already been established to search for specific email addresses or user names, including haveibeenpwned.com and ashleymadisonleakeddata.com. The website trustify.info also offers to comb through the data dump.