Recent cybersecurity alerts emphasize a critical vulnerability affecting dating apps, where nearly 1.5 million private photos have been exposed. Apps such as BDSM People and PINK, created by M.A.D Mobile, were found storing explicit photos without password protection. Although M.A.D Mobile claims no photos were accessed by malicious actors, they confirmed an ongoing internal investigation into the incident, which they attribute to human error. Ethical hacker Aras Nazarovas revealed that insecure storage locations and disabled security features contributed to this breach, heightening the risk of extortion for affected users.
Researchers from Cybernews, alarmed by the exposure of almost 1.5 million private photos from dating apps, revealed it was due to an easily exploited security flaw.
M.A.D Mobile, responsible for several affected dating apps, assures that none of the images were downloaded by malicious actors, attributing the incident to 'a simple human error'.
Ethical hacker Aras Nazarovas expressed shock at the level of access that led to the exposure of private messages, stating, 'these secrets... were meant to remain hidden'.
Nazarovas highlighted the dangerous absence of security measures, explaining that developers had disabled critical security features which should have protected sensitive user data.
Collection
[
|
...
]