It appears to contain an email spool for Avid Life Media CEO Noel Bidman.
A version of email file hackers distributed Thursday turned out to be corrupted and couldn't be opened, but they reposted a new version today, which is still being downloaded by journalists.
And they published the data via a Tor server, which gives them anonymity as long as they didn't make mistakes.
"If the attacker took proper OPSEC precautions while setting up the server, law enforcement and AM may never find them," Cabetas observed in his blog post."If [the hackers are] going to get popped by law enforcement, it's going to be analysis of their multiple manifestos," Cabetas suspects.
It's also interesting to note that the compressed files released Tuesday had already been prepared for distribution a month ago, when the Impact Team made their initial threat to release data if ALM didn't take down Ashley and another site it owns, Exceptional
The Read Me file that accompanied the data dump this week, for example, has a July 19 timestamp."It looks to me that they got everything together on July 19 but didn't release it until a month later, if we are to believe the timestamps," says Erik Cabetas of Include Security, who wrote an analysis about the metadata in the files.
News of the Ashley Madison breach broke July 19, and dates in the files leaked Tuesday suggest they were stolen during the three weeks prior.
Other than the initial statement from CEO Biderman that investigators were on to the perpetrator, there have been no other clues about who might be behind the hack.
that touted itself as the premier cheating site for married people seeking partners for infidelity, Ashley Madison was relatively unknown until hackers broke into its servers and released more than 30 gigabytes of customer and company data this week, propelling it into the spotlight.
The site, owned by Canadian firm Avid Life Media, has been online since 2001 and claims to have about 40 million users, though that figure is almost certainly inflated, considering a former employee's claim that the company paid her to create false female accounts to attract male customers.
After hackers who call themselves the Impact Team released their first big data dump from Ashley Madison and its parent company on Tuesday, journalists and others have been poring over it, exposing reality TV star Josh Duggar as a confirmed customer, as well as several unidentified government workers who accessed their Ashley Madison accounts from government IP addresses.
But the latest dump, released Thursday and today, could prove to be more embarrassing and harmful to Ashley Madison's business than its customers.The hackers have been good so far about operational security around their release of the data, according to Cabetas.