A software vulnerability into the popular dating application might have let hackers take control user records and spread spyware
Valentine’s Day might have you shopping for love, however you may want to think hard before firing up your favorite relationship app.
Scientists during the Israeli cybersecurity company Checkmarx recently discovered safety flaws when you look at the Android form of OkCupid that, among other items, might have let cybercriminals deliver users missives disguised as in-app communications.
The flaws have since been fixed. Before that, nonetheless, users could have been tricked into losing control of their accounts or had information stolen after which utilized for identification credit or theft card scams, in line with the scientists.
“There was simply no method for an user that is unsuspecting understand that this wasn’t OkCupid, but, alternatively, a typical page built to look like OkCupid,” says Erez Yalon, Checkmarx’s mind of safety research.
That isn’t the first occasion Yalon’s group has found safety issues in a dating application. Just last year, Checkmarx announced that its scientists had discovered flaws in Tinder’s app which could give hackers a method to see which profile pictures a person had been taking a look at and exactly how she or he reacted to those pictures.
A lot of personal information while both the OkCupid and Tinder security problems have since been fixed, they still stand as a warning to consumers to be wary of all apps, and particularly dating apps, that store.
“The OkCupid researchers took advantageous asset of a few small flaws to wrench available a significant back door,” says Bobby Richter, whom leads CR’s privacy and safety assessment team. “At least the business responded fairly quickly with a.” that is fix