Grindr flaw allowed hijacking accounts with just an email address

While Grindr quickly fixed the issue after hearing from Hunt, the incident underscored the platform’s shortcomings when it comes to security. And that’s a huge problem when the dating app caters to individuals whose sexual orientations and identities could make them a target for harassment and violence. This isn’t the first security issue Grindr has had to deal with. Back in 2018, it had a couple of flaws that risked exposing a user’s location. Earlier this year, the Norwegian Consumer Council published a report accusing Grindr and other dating services of spreading sensitive information, such as GPS locations.

Grindr chief operating officer Rick Marini told TechCrunch that in response to the discovery of this particular flaw, it’s taking additional steps to tighten its security measures. It’s making it easier for researchers to report security issues, and it vows to announce a new bug bounty program “soon.”

“We are grateful for the researcher who identified a vulnerability. The reported issue has been fixed. Thankfully, we believe we addressed the issue before it was exploited by any malicious parties.

As part of our commitment to improving the safety and security of our service, we are partnering with a leading security firm to simplify and improve the ability for security researchers to report issues such as these. In addition, we will soon announce a new bug bounty program to provide additional incentives for researchers to assist us in keeping our service secure going forward.”

Recent Articles

Meizu Watch to open a new chapter in the smartwatch industry – see you in Q4 2020

A few months ago, Meizu officially announced that it will release the “Flyme for Watch” system in Q4 2020. The Flyme OS is Meizu’s...

Hot Exoplanet Smaller than Earth Found Orbiting Nearby Red Dwarf | Astronomy

An international team of astronomers has discovered a hot terrestrial planet orbiting the rapidly-rotating low-mass star TOI-540. An artist’s impression of the hot rocky exoplanet...

Universal Pushes Jurassic World: Dominion To June 2022

Jurassic World: Dominion has been delayed by Universal due to the ongoing Coronavirus pandemic. After Regal and Cinemark made the decision to close their doors...

India approves Apple partners and Samsung for $143 billion smartphone manufacturing plan – TechCrunch

Samsung and three major contract manufacturing partners of Apple are among 16 firms to win $6.65 billion incentives under India’s federal plan to...

Related Stories

Leave A Reply

Please enter your comment!
Please enter your name here

Stay on op - Ge the daily news in your inbox