Technology
A security flaw in Grindr let anyone easily hijack user accounts – TechCrunch
Secret tokens used to reset account passwords were leaking to the browser.
Grindr, one of the world’s largest dating and social networking apps for gay, bi, trans, and queer people, has fixed a security vulnerability that allowed anyone to hijack and take control of any user’s account using only their email address.
Wassime Bouimadaghene, a French security researcher, found the vulnerability and reported the issue to Grindr. When he didn’t hear back, Bouimadaghene shared details of the vulnerability with security expert Troy Hunt to help.
The vulnerability was fixed …
-
General15 hours agoQantas terminal at Melbourne Airport evacuated and flights delayed due to fire
-
Noosa News24 hours agoJane Edmanson hangs up her Gardening Australia hat, reflects on labour of love behind show’s success
-
Noosa News24 hours agoHow to get $80,000 grants after severe hail
-
General20 hours agoCone of Silence. Is secret Aussie spy in Rex Patrick case a man or a woman?