Swipe Right for Data Leaks: Dating Apps Expose Location, More

Swipe Right for Data Leaks: Dating Apps Expose Location, More

July 22, 2024 at 03:14PM

Security researchers from Belgium found that numerous dating apps may compromise users’ privacy by leaking sensitive data and even their exact location. All 15 apps analyzed had vulnerabilities that could be exploited to obtain sensitive user information. Additionally, trilateration techniques were used to pinpoint users’ precise locations, posing potential physical threats. However, the researchers have reported that the location leaks in the vulnerable apps have since been fixed.

From the meeting notes, it appears that security researchers in Belgium have found that many location-based dating apps may pose a threat to users’ privacy. The researchers analyzed 15 popular dating apps and discovered that all of them leaked sensitive user data that could potentially be exploited by attackers. This sensitive data includes information such as ethnic origin, political opinions, sexual orientation, gender, and health information.

Furthermore, the researchers were able to exploit the apps to pinpoint the exact physical location of users, posing potential risks to their safety and privacy. The method used to do this is similar to how GPS satellites track location and can be used to find a user’s precise location with varying accuracy.

Upon discovering these vulnerabilities, the researchers contacted the companies behind the vulnerable apps, and while some of the location leaks have been fixed, it was noted that some of the apps are still leaking data due to the companies claiming it was “intended behavior” of the apps.

The researchers emphasize the importance of being cautious about the information shared on dating apps, as well as urging users to be conscious about the data they share. They also highlighted the potential risks posed by these privacy leaks, especially in the context of dating apps and the emotional nature of interactions that occur within them.

Overall, the researchers plan to unveil their findings in a paper titled “Swipe Left for Identity Theft: An Analysis of User Data Privacy Risks on Location-based Dating Apps” at the upcoming Black Hat USA 2024 conference. Their work in this area stemmed from previous research focused on location privacy and the potential risks associated with sharing sensitive data on various online platforms.

It’s clear from the meeting notes that the researchers are highlighting serious privacy concerns around dating apps and the importance of maintaining user privacy and safety within these platforms.

Full Article