Tea payments itself as a security courting app for ladies, permitting customers to anonymously share particulars about males they’ve met. A brand new app referred to as TeaOnHer has emerged that makes an attempt to flip the script, with males sharing details about girls they date. And whereas Tea drew scrutiny final month after a knowledge breach revealed consumer info, together with doubtlessly figuring out particulars reminiscent of telephone numbers and private anecdotes, the copycat app appears to be affected by the identical drawback.
TechCrunch found a number of safety points at TeaOnHer, which is at present second hottest way of life app on iOS. (Tea is the present chief regardless of the problems). The publication reported that it recognized a safety flaw that allowed anybody to entry TeaOnHer consumer knowledge, together with usernames, electronic mail addresses, uploaded driver's licenses and selfies. It additionally discovered a attainable second challenge the place the e-mail handle and plaintext password for Xavier Lampkin, founder and CEO of the app's developer, was left uncovered. These credentials seem to supply entry to TeaOnHer's admin panel, which is one other safety threat.
The total report at TechCrunch additionally raises considerations in regards to the content material shared on the app, which included spam posts with nude pictures of ladies. It's unclear how most of the roughly 53,000 customers for TeaOnHer may be bots, or whether or not the app was ever meant for use significantly; chunks of its description within the iOS retailer use near-identical language to Tea's itemizing.
This text initially appeared on Engadget at https://www.engadget.com/cybersecurity/theres-a-tea-app-for-men-and-it-also-has-security-problems-224435459.html?src=rss