Fling 2011 Data Breach

Fling Adult Dating Platform Breach (2011): 40 Million User Accounts Including Sexual Orientation & Preferences Exposed | ObscureIQ
ObscureIQ Breach Intelligence

Classification Tags

AdultActivity HistoryDate of BirthEmail AddressGenderGeographic LocationIP AddressPasswordPhone NumberSexual Orientation
High SeverityWebsite / service breach

Fling Adult Dating Platform Breach (2011): 40 Million User Accounts Including Sexual Orientation & Preferences Exposed

Online dating platform focused on casual relationships.

Verified by ObscureIQ Intelligence
69/100Breach Risk Index
40Data Value
25Market Recency
469dSince Breach

Breach Intelligence Summary

Entity: Fling · Actor: Unknown · Sources: 5 references
Attack: Unknown
Profile: Sensitive Relationship Platform · Casual and adult-oriented dating · Adult-oriented dating platform · Global
Timeline: Breach (2011-03-10) · Indexed (Jan 13, 2025) · Year (2011)
Exposure: 40.8M records · 11 fields: Activity History, Date of Birth, Email Address, Gender, Geographic Location, IP Address, Password, Phone Number, Sexual Orientation, Sexual Preferences, Username
Status: Confirmed

Executive Summary

Fling, an adult-oriented hookup and casual dating platform, was breached by an unknown attacker in 2011, exposing over 40 million user accounts. The method of intrusion has not been publicly disclosed. The breach did not surface widely until years after the incident, following a pattern common among early-2010s credential databases that circulated privately before becoming broadly known. The exposed data is unusually sensitive. Records included email addresses, passwords stored in plain text, dates of birth, phone numbers, geographic locations, IP addresses, genders, usernames, website activity histories, sexual orientations, and sexual fetishes. The combination of explicit sexual profile data with a hookup platform context creates serious risk of extortion, outing, and targeted harassment. Affected individuals may never have expected this information to leave the platform, and many may not know it was exposed at all. No settlement or regulatory action specific to this breach has been publicly documented. Affected users face lasting exposure: plain-text passwords can enable account takeovers across other services if reused, and the sexual profile data can be used to coerce or embarrass individuals years after the breach occurred. Anyone who used Fling around or before 2011 should treat their credentials as compromised and consider the possibility that their sexual identity information is in circulation.

ObscureIQ assessment: Very high sensitivity. Exposure enables extortion, reputational harm, harassment, and identity linkage around adult dating behavior and sexual interests.

Breach Impact

The 2011 breach exposed approximately 40 million accounts including email addresses, dates of birth, genders, geographic locations, IP addresses, passwords, phone numbers, sexual orientations, and website activity histories. The sexual orientation field — combined with the adult dating platform context — is what places this record in the restricted tier. The breach did not surface publicly until years after the incident, following the pattern of major early-2010s credential databases that circulated privately before becoming widely known. No settlement or regulatory action specific to this breach has been prominently documented.

About Fling

Fling is an adult-oriented social network and casual dating platform marketed around hookup and short-term relationship facilitation. The platform has operated for many years as a smaller competitor in the adult dating market alongside services like Adult FriendFinder. It collects detailed personal and sexual profile information as part of its user registration and matching process.

Why They Hold Your Data

Adult-oriented dating platforms collect highly sensitive profile data, emails, messages, sexual-interest signals, photos, and account activity tied to casual or explicit relationship seeking.

Recent Developments

Fling has maintained a low public profile with no major organizational changes or ownership announcements prominently documented in recent years. The platform continues to operate as a niche adult dating service.

Data Points Exposed

11 verified field types
Activity History
Date of Birth High
Email Address
Gender
Geographic Location
IP Address
Password Critical
Phone Number
Sexual Orientation High
Sexual Preferences High
Username

Field names are shown in full for clarity and search visibility. Canonical machine keys are emitted only in this page’s structured data.

Exploitation & Downstream Threats

Threat Activity:Critical
Primary downstream threats:
  • Credential stuffing against reused passwords across other platforms
  • SIM swap attacks where phone numbers are present
  • Targeted phishing campaigns using exposed email addresses
  • Doxxing risk from physical address exposure
Threat vectors:
  • Behavioural profiling & blackmail
  • Identity verification bypass
  • Phishing, credential stuffing & account takeover
  • Profile enrichment
  • Pattern-of-life analysis & physical surveillance
  • Geolocation & account flagging
  • Credential stuffing & account takeover
  • SIM swapping, vishing & SMS phishing
  • Outing, blackmail & targeted violence
  • Blackmail & coercive extortion
  • Cross-platform tracking & credential stuffing

Recommended Actions

If you believe your information may be included:

Change Reused Passwords
Update this account and anywhere you reused the password; use a manager.
Password manager guide
Enable MFA Everywhere
Turn on multi-factor authentication on email first, then financial accounts.
Find 2FA settings
Report & Recover
If you spot misuse, start an official recovery plan and report fraud.
IdentityTheft.govReport to FTC

Frequently Asked Questions

What happened in the Fling breach?

Fling, an adult-oriented hookup and casual dating platform, was breached by an unknown attacker in 2011, exposing over 40 million user accounts. The method of intrusion has not been publicly disclosed. The breach did not surface widely until years after the incident, following a pattern common…

What data was exposed?

Verified fields include Activity History, Date of Birth, Email Address, Gender, Geographic Location, IP Address, Password, Phone Number, Sexual Orientation, Sexual Preferences, Username.

What should I do if I was affected?

Change reused passwords, enable MFA, and (if identity or financial data is involved) freeze your credit and monitor your accounts.

Sources & References

Every claim on this page is traceable. This breach draws on:

Breach Index
DataBreach.com
Record & field corroboration
Breach Index
Have I Been Pwned
Record & field corroboration
Cross-source
9ghz
Independent catalogue listing
Cross-source
BreachForums_Official_Index
Independent catalogue listing
ObscureIQ Intelligence
ObscureIQ proprietary analysis
Risk Index scoring & downstream-threat assessment

Protect Yourself

Check If You're Affected

Enter your email to check whether your data appears in this breach. We’ll send a 6-digit code to confirm it’s your address.

Get Free Breach Alerts

Be the first to know when new breaches are disclosed. Free forever — confirm your email with a 6-digit code.

High-Risk? Get an Exposure Audit

Executives, public figures, and high-visibility operators can receive tailored exposure intelligence and hardening guidance.

Request Consultation