Account details of more than 250,000 people who used a site for sex workers in the Netherlands have been stolen in a hack attack.
Email addresses, user names and passwords were stolen from a site called Hookers.nl.
The attacker is believed to have exploited a bug in its chat room software found last month. Reports suggest the malicious hacker who took the data has offered it for sale on a dark web marketplace.
The website's media spokesman Tom Lobermann told Dutch broadcaster NOS that the site had informed everyone who had an account about the breach. The message sent by the site's administrators also advised people to change their passwords.
Hookers.nl used a popular program for hosting online forums and discussions called vBulletin. In late September, security researchers identified a vulnerability in the program that could be exploited to steal data. VBulletin quickly produced a
patch for the bug but several sites were breached before they could deploy and install the protection.