-
Important news
-
News
-
Shenzhen
-
China
-
World
-
Opinion
-
Sports
-
Kaleidoscope
-
Photo Highlights
-
Business
-
Markets
-
Business/Markets
-
World Economy
-
Speak Shenzhen
-
Leisure Highlights
-
Culture
-
Travel
-
Entertainment
-
Digital Paper
-
In depth
-
Weekend
-
Lifestyle
-
Diversions
-
Movies
-
Hotels
-
Special Report
-
Yes Teens
-
News Picks
-
Tech and Science
-
Glamour
-
Campus
-
Budding Writers
-
Fun
-
Futian Today
-
Advertorial
-
CHTF Special
-
FOCUS
-
Guide
-
Nanshan
-
Hit Bravo
-
People
-
Person of the week
-
Majors Forum
-
Shopping
-
Investment
-
Tech and Vogue
-
Junior Journalist Program
-
Currency Focus
-
Food Drink
-
Restaurants
-
Yearend Review
-
QINGDAO TODAY
在线翻译:
szdaily -> Kaleidoscope -> 
Group sex app exposes users in White House, Downing St.
    2019-08-12  08:53    Shenzhen Daily

A MASSIVE vulnerability has been exposed in the group dating app 3fun, with researchers gaining access to a trove of information on its users. In a further twist, users were uncovered in the corridors of power in the U.S. and U.K.

The app is described as a “Curious Couples & Singles Dating” platform. One would think that security would rank fairly high on the agenda for such a service; however, that was clearly not the case as the Pen Test Partners security researchers, who discovered the vulnerability, described what they felt was “probably the worst security for any dating app we’ve ever seen.”

Personal information, sexual preferences, private photos, chat data and users’ real time locations were all exposed due to 3fun’s shoddy security practices.

The leak was due to 3fun storing its users’ location data in the app itself, as opposed to keeping it securely on its servers. This allowed the researchers to uncover the data on the client side, even for users who had restricted their location data.

The vulnerability meant that Pen Test Partners could discover the locations of 3fun’s users around the globe. Amazingly users were found in the White House, the U.S. Supreme Court, and at 10 Downing Street in London. However, the security experts did concede that it’s “technically possible” that these users faked their locations.

(SD-Agencies)

深圳报业集团版权所有, 未经授权禁止复制; Copyright 2010, All Rights Reserved.
Shenzhen Daily E-mail:szdaily@szszd.com.cn