Security Flaws in Dating App Grindr Expose Users' Location Data - NBC 6 South Florida
National & International News
The day’s top national and international news

Security Flaws in Dating App Grindr Expose Users' Location Data

In a statement issued to NBC News, Grindr said it was aware of the vulnerabilities and changed its system to prevent access to data regarding blocked accounts

    processing...

    NEWSLETTERS

    How to Protect Yourself From Hackers

    From regularly updating your software to uncommon screen lock codes, there are many things you can do to protect yourself from hackers trying to access your sensitive information. NBC News' Mark Barger and Consumer Reports Editor Jerry Beilinson offer some helpful tips on how you can safeguard your data. (Published Friday, Nov. 30, 2018)

    Grindr, a gay-dating app, suffers from security issues that can expose the information of its more than 3 million daily users, including the location data of people who have opted out of sharing such information, according to cybersecurity experts.

    The security flaws were identified by Trever Faden after he created a website called C*ckblocked (the asterisk is part of the name of the service), NBC News reported. His website allowed users to see who blocked them on Grindr after they entered their Grindr username and password. Once they did so, Faden was able to see user data that is not publicly available on user profiles, including unread messages, email addresses, deleted photos, and the location data of users.

    Grindr makes public the location of many of its users, but allows for users to opt out of this feature. Faden found that he could find the location of users who had opted out if they connected their Grindr profiles through his third-party website. 

    In a statement issued to NBC News, Grindr said it was aware of the vulnerabilities Faden found and changed its system to prevent access to data regarding blocked accounts. The company did not change access to any of the other data or how its app sends location data openly over the internet and also warned people not to use their Grindr logins for other apps or websites. After Grindr changed its policy on access to data on which users had blocked other users, Faden shut down his website.

    Facebook: To Delete or Not to Delete?

    [NATL] Facebook: To Delete or Not to Delete?

    As more details emerge about the data privacy scandal surrounding the Trump-connected firm Cambridge Analytica and Facebook, some users are revisiting the concept of leaving the social media site. The hashtag "Delete Facebook" is trending online as Americans vow to take a step back from the social network following reports of misuse of some 50 million profiles. NBC News' Liz McLaughlin reports.

    (Published Friday, March 23, 2018)