LulzSec has hacked Pron.com (a free porn site) and dumped their entire database and posted it on their website.  LulzSec hasn’t said exactly what vulnerability they exploited, but they noted in a tweet that the database they posted contains over 26,000 user names and passwords.  They also noted that many of the user accounts had .gov and .mil email address.

Obviously the first thing someone is going to do with these user names and passwords is change the password on all attached email and social networking accounts.  If the person is smart enough they may even remember to change the security questions and answers.  As people began trying these email addresses to get into the victims Facebook accounts, Facebook’s advanced security measures to recognize devices/IP addresses that a user hasn’t logged into before, activated and thereby locking all the accounts.  Kudos to Facebook on the top notch anti-hacking measures.