Technology

A security flaw in Grindr let anyone easily hijack user accounts – TechCrunch

Secret tokens used to reset account passwords were leaking to the browser.

Published

5 years ago

October 3, 2020

Grindr, one of the world’s largest dating and social networking apps for gay, bi, trans, and queer people, has fixed a security vulnerability that allowed anyone to hijack and take control of any user’s account using only their email address.
Wassime Bouimadaghene, a French security researcher, found the vulnerability and reported the issue to Grindr. When he didn’t hear back, Bouimadaghene shared details of the vulnerability with security expert Troy Hunt to help.
The vulnerability was fixed …

Click here to view the original article.

Related Topics:Australia TechCrunch

Up Next

Twitter is making changes to its photo software after people online found it was automatically cropping out Black faces and focusing on white ones – Business Insider Australia

Don't Miss

If iOS 14 is causing battery drain, you might need to wipe your iPhone – The Verge