Safety researchers warn of critical zero-day flaws in ‘age gap’ dating app Gaper

Safety researchers warn of critical zero-day flaws in ‘age gap’ dating app Gaper

‘We identified it was feasible to compromise any account in the application within a 10-minute timeframe’

Critical zero-day weaknesses in Gaper, an ‘age gap’ dating app, could possibly be exploited to compromise any individual account and potentially extort users, protection scientists claim.

The lack of access settings, brute-force security, and authentication that is multi-factor the Gaper software suggest attackers may potentially exfiltrate delicate individual information and usage that data to obtain complete account takeover in a matter of ten full minutes.

More worryingly nevertheless, the assault didn’t leverage “0-day exploits or advanced methods and then we wouldn’t be amazed if this was not previously exploited into the wild”, stated UK-based Ruptura InfoSecurity in a technical write-up posted yesterday (February 17).

Inspite of the obvious gravity of this hazard, scientists stated Gaper neglected to answer numerous tries to contact them via e-mail, their only help channel.

GETting data that are personal

Gaper, which launched during summer of 2019, is just a dating and social networking app geared towards individuals looking for a relationship with more youthful or older women or men. […]