Therefore I reverse engineered two dating apps.

Therefore I reverse engineered two dating apps.

And I also got a zero-click session hijacking along with other enjoyable weaknesses

On this page I reveal a number of my findings throughout the reverse engineering regarding the apps Coffee Meets Bagel additionally the League. I’ve identified a few critical weaknesses through the research, all of these have now been reported to your vendors that are affected.

Introduction

In these unprecedented times, a lot more people are escaping in to the world that is digital deal with social distancing. Of these right times cyber-security is much more essential than in the past. From my experience that is limited few startups are mindful of security recommendations. The businesses in charge of a big selection of dating apps are no exclusion. We began this small scientific study to see exactly how secure the dating apps that are latest are.

Accountable disclosure

All severity that is high disclosed in this article have now been reported into the vendors. Because of the time of publishing, matching patches have now been released, and I also have actually individually confirmed that the repairs have been in destination.

I shall perhaps perhaps maybe not offer details within their proprietary APIs unless appropriate. […]

© 2021 Unaka Marketing. All rights reserved.