Technology
A security flaw in Grindr let anyone easily hijack user accounts – TechCrunch
Secret tokens used to reset account passwords were leaking to the browser.
Grindr, one of the world’s largest dating and social networking apps for gay, bi, trans, and queer people, has fixed a security vulnerability that allowed anyone to hijack and take control of any user’s account using only their email address.
Wassime Bouimadaghene, a French security researcher, found the vulnerability and reported the issue to Grindr. When he didn’t hear back, Bouimadaghene shared details of the vulnerability with security expert Troy Hunt to help.
The vulnerability was fixed …
-
Noosa News23 hours agoMeasles alert issued across popular south-east attractions
-
General23 hours agoSector warns Coalition’s plan to limit overseas students ‘straight out of Trump’s playbook’
-
Noosa News24 hours agoHomicide investigation launched into stabbing death of 39-year-old Brisbane man at Bowen Hills apartment
-
Noosa News9 hours agoNSW farmer calls for hunting buffer zones after bullets hit property