Technology
A security flaw in Grindr let anyone easily hijack user accounts – TechCrunch
Secret tokens used to reset account passwords were leaking to the browser.
Grindr, one of the world’s largest dating and social networking apps for gay, bi, trans, and queer people, has fixed a security vulnerability that allowed anyone to hijack and take control of any user’s account using only their email address.
Wassime Bouimadaghene, a French security researcher, found the vulnerability and reported the issue to Grindr. When he didn’t hear back, Bouimadaghene shared details of the vulnerability with security expert Troy Hunt to help.
The vulnerability was fixed …
-
General15 hours agoCoroner to examine treatment of woman who died three days after surgery performed by former Queensland premier’s partner
-
General17 hours agoAlbanese beats drum on economy as trade clouds gather
-
Noosa News17 hours agoSurgeon partner of former premier to testify over his patient’s death
-
Business14 hours agoWhy Antipa, Cettire, Magnetic Resources, and Steadfast shares are pushing higher