back to article Huge embarrassment over fisting site data breach

A data breach at a forum for "anal fisting" has resulted in the exposure of 107,000 accounts. More than a third (37 per cent) of those affected by the Rosebutt Board were already included in the Have I Been Pwned? site, according to security researcher Troy Hunt. Victims will be able to use Have I Been Pwned? to check whether …

  1. I'm Brian and so's my wife


    1. james 68

      Yup, a right pain in the arse for those involved.

      1. Captain DaFt

        Don't worry

        I'm sure the investigation will get to the bottom of this.

      2. TitterYeNot

        "a right pain in the arse for those involved."

        Just a pain in the arse? This didnt just stretch their arses, it rect'um!

        Though you have to admire these people's tolerance for pain - come on folks, let's give 'em a big hand...

        1. Warm Braw

          You've probably already had more thumbs up than the subscribers to the site...

    2. BinkyTheMagicPaperclip Silver badge

      Definite brown trousers when they find the person responsible, butt plug the holes and this sort of leakage won't happen again.

  2. Warm Braw

    Multiple .gov and .mil email addresses

    Perhaps a foreign power had a hand in it.

    Edit: 'sponsored link at foot of article was 'Top tips for stretched sysadmins'

  3. Chicken Marengo


    Surely El Reg's best choice of stock photo ever

    (Chose the gimp, it was a toss up between him or Paris for appropriateness)

    1. Captain Badmouth

      Re: Inspired

      Yes, it was a still from the "Soreshank Redemption", wasn't it?

    2. Anonymous Coward
      Paris Hilton

      Re: Inspired

      They should have gone for The Great estGape

      I bet Paris would have shown 'em --->

  4. netean

    What kind of idiot would you have to be use a work email address (.mil .gov)?

    Probably the type of person into anal fisting I guess?

    1. Anonymous Coward
      Anonymous Coward

      Those who are afraid that using their personal address may inadvertently disclose their "hobby" to their unknowing partner... your work address is much more secure, isn't it? Maybe we'll know more from a future episode of "On Call"....

      1. Anonymous Coward
        Anonymous Coward

        re:unknowing partner

        The unusually large rectum may be more of a give-away.

        1. Dr Spork

          Re: re:unknowing partner

          >The unusually large rectum may be more of a give-away.

          They probably weren't expecting it to get so read

          PS Can someone re-label the Holmes icon, please? --->

      2. thomas k

        re: work vs personal

        Wasn't Gmail invented just for this sort of site?

        1. Eddy Ito

          Re: re: work vs personal

          Wasn't Gmail invented just for this sort of site?

          Who knows what sexual proclivities lurk in the hearts of politicians? The Google knows.

          Oh! That explains the strong ties between the current administration and the GOOG.

    2. Keith Glass

      The same sort who would use their work addy for

      In other words, idiots.

      Who now will take it up the @ss, because they like taking it up the @ss. . .

      1. Adam 52 Silver badge

        Or possibly, like Ashley Madison, the sort of person who registers someone else as a prank.

        1. Anonymous Coward
          Anonymous Coward

          I haven't checked my spam folder today but wouldn't be surprised to see a signup for this site. But I think IPBoard actually does email verification, unlike Ashley Madison.

          1. dmacleo

            ipboard allows admin to choose method. can be no method, user signs up and is done.

            can be that with admin approval

            can be email setup where user does email authenticate and can also have admin approval needed on top of that.

    3. FrogsAndChips Silver badge

      Re: What kind of idiot?

      Or the type of person who judges others based on their sexual inclinations?

    4. Anonymous Coward
      Anonymous Coward

      What kind of idiot would you have to be use a work email address (.mil .gov)?

      Hmm. I don't know. Anyone with a email address could claim it was merely work related..

    5. Anonymous Coward
      Anonymous Coward

      What kind of idiot would you have to be use a work email address (.mil .gov)?

      The kind that can create & use email addresses belonging to other users in your domain.

  5. Anonymous Coward
    Anonymous Coward

    That's exactly what huge [security] holes means...

    "Security? Ehrrr, no, there's nothing secure in what we do..."

  6. Chairo

    Let me be the first to say it

    What a pain in the ass!

    (Sorry, couldn't resist)

    1. Anonymous Coward

      Re: Let me be the first to say it

      Why is the donkey in so much pain?

      Sorry, yes now I'm being a pedantic pain in the arse…

      1. Chairo

        Re: Let me be the first to say it

        "Sorry, yes now I'm being a pedantic pain in the arse…"

        Yes, poor animal. Probably hemorrhoids.

        Anyway, as the first poster stated - a bit of a bummer...

    2. Alister

      Re: Let me be the first to say it

      You weren't the fist first, sorry

      1. 2460 Something

        Re: Let me be the first to (be pedantic)

        Check the time stamp.. 2hrs vs 1hr. Remember you can change how comments are viewed, I suspect you only have 'sort comments by thread' (which is the default) so if you reply to a post further up it will push down other threads even if they have an earlier time stamp. If you change it to 'sort comments by oldest' you will see whom bested whom in the timely shenanigans of el reg commentardary ... ...

      2. Alister

        Re: Let me be the first to say it

        Okay, he was the first.

  7. kmac499

    Considering their Hobby ( and everyone needs a hobby) I'd be more concerned about cleaning down and sanitizing any shared keyboard and mouse..

  8. Anonymous Coward
    Anonymous Coward

    Someone should have offered them a little hand in keeping it up to date.

  9. TeeCee Gold badge


    Surely these days the forum of choice for massive arseholes is Twitter?

    1. tirk

      Re: Eh?

      Surely these days the forum of choice for massive arseholes is Twitter?

      Have you checked out BBC "Have Your Say" recently?

  10. frank ly

    I suppose their cheeks will be red due to blushing now

    Coat: As fast as I can butt with a limp.

  11. Anonymous Coward
    Anonymous Coward

    Surely more of a leak than a breach?

  12. Anonymous Coward
    Anonymous Coward

    I'm guessing the vulnerability was turned into a large back door.

  13. ar12
    Thumb Up

    Sounds like they forced their way in through the back door.

  14. Anonymous Coward
    Anonymous Coward

    Not sure that "Top tips for stretched admins" is the best choice of sponsored link for this article.

  15. Destroy All Monsters Silver badge

    Fist of God!

    Sure looks like a penetration in the Ringworld.

  16. Anonymous Coward

    Was it just data that seeped out or was there also a loss of liquid assets?

  17. AbortRetryFail

    Probably going to be some red faeces in their IT department.

  18. anonymous boring coward Silver badge

    Is it too much to ask that El Reg use euphemisms instead of plain speak?

    Just asking..

    1. thomas k

      bunker busting?

      That's the best I can come up with on such short notice.

    2. Rol

      Bomb bay mechanics are back to biting their nails!

      Apparently the tried and tested method in preventing people from biting their nails has been outed as some kind of sexual fetish.

      Followers of the "California" technique, where clients regularly apply excreta to alleviate their onychophagy appear to have been targeted by on-line hackers and are fearful that their medical treatment might become more of a social stigma than their nibbled fingers ever were.

      We asked a local spokesman for a comment:-

      "Arghh! Arghh! Ooooo, Arrrgh..."

      Clearly they are in a lot of pain and we as a caring community should come together on this and give them a helping hand.

  19. anonymous boring coward Silver badge

    Guess the penetration was done via a backdoor vulnerability?

    1. Alan J. Wylie

      I'm waiting for the breech anal-ysis to be released.

  20. Anonymous Coward
    Anonymous Coward

    Warning to potential DevOps people...

    Now would be a good time to fully understand the difference between hyper-divergence and hyper-dilation.

  21. Anonymous Coward
    Anonymous Coward

    Well, that's it!

    I'm suing that site fi(r)st thing tomorrow!

    Anonymous, obviously

  22. FuzzyWuzzys

    We elected our governments, I think all our names should be on that list the amount of abuse our rears take day-in, day-out from our glorious leaders!

  23. Nixinkome

    All those slackers ringing around for jobs.

  24. Anonymous Coward
    Anonymous Coward

    The bottom of their

    world just fell out.

    No, wait, thats wrong.

    The world just fell out of their bottom.. Yeah, thats the right one.

  25. donik111

    i here a song coming

    Antony and the Johnsons - fistful of love

  26. BurnT'offering

    Have I Been Pwned? - does it accept wildcard queries?

    eg *

  27. Blipvert

    Fist of Fun

    DVD, when BBC, when?

  28. Mr Dogshit

    Hey! Fister Tambourine Man

    "Come on, baby, let's do the fist!"

    That's enough fisting jokes - Ed

  29. Aodhhan

    Right Wing Hackers

    Here it is, those darn right wing, ultra conservative, Bible thumping, prudish, Spanish inquisition hackers sending a message to those who are not so prudish.

    I type out about 20 obvious jokes on the meaning of backdoor hacking both with and without greasing the code, but you've probably already thought of them on your own.

  30. Tikimon

    On a serious note... TRASHMAIL dang it!

    There's really no reason to use a real e-mail address to sign up if you know about trashmail services. I use them frequently to avoid every bloody... errr annoying site demanding I "register" with them. The best part is how you can actually read the confirmation message and click the "Yes, this is a working address to SPAM SPAM SPAM SPAM!" link.

    No, I'm no on THAT site...

  31. Mark 85

    I see the comments have become humorroids today. Excellent.

  32. Anonymous Coward
    Anonymous Coward

    I know if I had an account there I'd be telling them to stick it up their...


  33. lansalot


    And this is why we get a regular penetration test.

    I'll skip this one tho - it's not something I want a hand in..

  34. x 7

    I wish someone would hack,, and

    I'd love to see a list of the bastards who are trafficking the girls on those sites.

  35. John Brown (no body) Silver badge

    "the Rosebutt breach,"

    Dear Mr Leyden,

    Would you kindly inform me of the correct email address to send my request for a replacement keyboard.

    Yours Faithfully

    John Brown Esq.

  36. Anonymous (Noel) Coward
    Paris Hilton

    analists one and all

  37. Inventor of the Marmite Laser Silver badge

    Optional Title

    Twinkle twinkle little rectum

    Get your thrills when you least expect 'em

  38. Anonymous Coward
    Anonymous Coward

    this story not only made my day, it made my hole weak.

  39. JLV

    I don't want to be anal about it, but isn't this precisely the kinda site where you'd want to CYA? Security-wise.

  40. Anonymous Coward
    Anonymous Coward

    I can't quite put my finger on it, butt something smells funny about this.

    I think people should use different password classes. One only for forums, one for webmail, and one for financial and bank sites.

    It works for me!

    But really, banks need to support U2F Fido NOW.

  41. hi_robb

    Now folks.

    If you ever used this site, put your hand up....

  42. Anonymous Coward
    Anonymous Coward

    Why is there a site for fist-bumping? It's just like a handshake.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Other stories you might like