A Tinder security flaw granted access to accounts with just a phone number

A Tinder security flaw granted access to accounts with just a phone number

Tinder was previously hit with a big security flaw that allowed access to accounts with just a phone number. Security researchers at Appsecure discovered a way to access anyone’s Tinder account just by their phone number. The exploit in question took advantage of a software flaw in both Tinder’s app login process as well as Facebook API that it was based on.

The issue has since been fixed, but knowing that this exploit existed is a big security lapse. “Both the vulnerabilities were fixed by Tinder and Facebook quickly,” write Appsecure’s Anand Prakash on Medium. To reward for Appsecure’s efforts, both companies gave $5000 and $1250, respectively, for its findings and report.

Mind you, this isn’t the first time a report came out stating a Tinder security flaw. Back in 2014, the company failed to encrypt user photos and exposed users’ exact locations for months, which again is a huge oversight that should have been checked and covered.


CategoriesSecurity Tech
Hamza Khalid

Hamza Khalid is the Lead Editor at The Jolt Journal. You're more than welcome to follow him on Twitter and follow The Jolt Journal on Twitter and Facebook. If you have any questions, concerns, or need to report something in this article, please send our team an email at [email protected]. This story may be updated at any time if new information surfaces.

At The Jolt Journal, no one tells us what to write or how to write it. This is why, in the era of lies and bias, readers turn to an independent source. Rest assured, all information on our website is free of any bias or influence. If you see anything wrong with a story, please don't hesitate to reach out. We do our very best to report on the latest available information.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.