Technology

73254 readers

3767 users here now

This is a most excellent place for technology news and articles.

Our Rules

Follow the lemmy.world rules.
Only tech related news or articles.
Be excellent to each other!
Mod approved content bots can post up to 10 articles per day.
Threads asking for personal tech support may be deleted.
Politics threads may be removed.
No memes allowed as posts, OK to post as comments.
Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
Check for duplicates before posting, duplicates may be removed
Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago

MODERATORS

L3s@lemmy.world

enu@lemmy.world

technopagan@lemmy.world

L4s@lemmy.world

L3s@hackingne.ws

L4s@hackingne.ws

570

Women Dating Safety App 'Tea' Breached, Users' IDs Posted to 4chan (www.404media.co)

submitted 1 day ago by bytesonbike@discuss.online to c/technology@lemmy.world

208 comments fedilink hide all child comments

Users from 4chan claim to have discovered an exposed database hosted on Google’s mobile app development platform, Firebase, belonging to the newly popular women’s dating safety app Tea. Users say they are rifling through peoples’ personal data and selfies uploaded to the app, and then posting that data online, according to screenshots, 4chan posts, and code reviewed by 404 Media.

you are viewing a single comment's thread
view the rest of the comments

[+] bytesonbike@discuss.online -16 points 1 day ago* (last edited 1 day ago) (3 children)

I honestly don't understand what op is talking about.

Leaks happen all the time, even in billion dollar companies.

Their comment is the equivalent like, "This is why you should lock your doors!" Like uh okay.

[–] prof@infosec.pub 17 points 1 day ago (1 children)

This situation would have been easily preventable with basic understanding of what they're doing is what OP is saying. This leak is not something highly complex, it is painfully stupid on the side of the developers.

There's a difference between a hack, where data is exposed, compared to data exposure due to negligence or ignorance on the development side.

[–] Eheran@lemmy.world 4 points 1 day ago (1 children)

Again, how should the end use know anything about what is going on at their end? How does anyone "vett" that? It is a nonsense "argument" to put blame on the users.

[–] prof@infosec.pub 2 points 1 day ago* (last edited 1 day ago)

Where I'm from there's certificates a company can get, that confirm a certain level of process and IT security. Also a company existing for at least 5-10 years without incidents is a "vetted" company in my books. At least anything that managed to produce a working IT system before 2021 when AI came around.

I also believe there's a bit of bad wording going on with the original comment. Take it up with that guy, lol.

[–] Tlaloc_Temporal@lemmy.ca 11 points 1 day ago (1 children)

This was more like leaving all your valuables in a cardboard box on your front lawn. Anyone can just take it, if they care to look inside the complete unsecured box.

Someone just drove up and tossed the box in their truck. No lock involved.

[–] Hupf@feddit.org -2 points 1 day ago

https://de.wikipedia.org/wiki/Datenvermeidung_und_Datensparsamkeit

[–] Eheran@lemmy.world -2 points 1 day ago (1 children)

I love how people just jump on whatever they like, instead of actually thinking about the stuff they read/comment on/upvote. Exactly like on Reddit, no difference.

[–] zarkanian@sh.itjust.works 1 points 16 hours ago (1 children)

How strange that a site designed exactly like reddit behaves like reddit.

[–] Eheran@lemmy.world 1 points 5 hours ago (1 children)

The thing is that many here think they are better, they look down on Reddit. There is a certain shift in what demographic switched over but generally it is the same.

[–] zarkanian@sh.itjust.works 1 points 2 hours ago

I thought they were looking down on the owners of reddit, not the user base.