[ad_1]
This week, Tinder responded to a letter from Oregon Senator Ron Wyden, calling on the company to fill the security loopholes in his application that could result in blackmail and d & # 39; 39, other forays into private life. Wyden, Match Group Lawyer Jared Sine describes the recent changes to the application, noting that from June 19, "the scan data has been completed so that all actions are now of the same size ". February 6, while the images on the web version of Tinder were already encrypted.
Tinder's problems were first reported in a report by a Checkmarx research team describing "disturbing vulnerabilities" and their propensity for blackmail: [19659004] "Vulnerabilities, found in the times in the Android and iOS versions of the application, allow an attacker using the same network as the user to monitor every movement of the application on the application. An attacker can also take checking the profile images that the user sees, exchanging them for inappropriate content, fraudulent advertising, or any other type of malicious content (as demonstrated in the search).
An attacker targeting a vulnerable user can sing the victim, threatening to expose highly confidential information from the Tinder profile of the user and actions in the application. "
In February, Wyden asked Tinder was able to address the vulnerability by encrypting all the data that moves between its servers and the application and filling in the data to obscure hackers. In a statement to TechCrunch at the time, Tinder said he heard the concerns of Senator Wyden and recently introduced encryption for profile photos in an effort to deepen his life protection practices private
. to improve our defenses in the battle against malicious hackers and cybercriminals "Sine said in the letter." … Our goal is to have protocols and systems that not only respect but exceed the best practices of the industry. "
Source link
