Technology
A security flaw in Grindr let anyone easily hijack user accounts – TechCrunch
Secret tokens used to reset account passwords were leaking to the browser.
Grindr, one of the world’s largest dating and social networking apps for gay, bi, trans, and queer people, has fixed a security vulnerability that allowed anyone to hijack and take control of any user’s account using only their email address.
Wassime Bouimadaghene, a French security researcher, found the vulnerability and reported the issue to Grindr. When he didn’t hear back, Bouimadaghene shared details of the vulnerability with security expert Troy Hunt to help.
The vulnerability was fixed …
-
General13 hours agoQantas terminal at Melbourne Airport evacuated and flights delayed due to fire
-
General18 hours agoCone of Silence. Is secret Aussie spy in Rex Patrick case a man or a woman?
-
Noosa News22 hours agoJane Edmanson hangs up her Gardening Australia hat, reflects on labour of love behind show’s success
-
Business17 hours agoWhy this ASX 200 tech stock could rise 20%