Do you use a dating app? Your safety is at risk
A search by Kaspersky Lab reveals how many of the most popular dating apps in the world do not correctly follow good security practices, exposing their users to data theft and conversations.
Recent research by Kaspersky Lab has shown that many dating applications offer a very low level of security, exposing users to many risks and leaving them vulnerable to information theft or even accounts.
The analysis of nine of the most-used meeting applications in the world has revealed that good security practices are not used by the companies that own them. The cause of this lies in the bad use of encryption in all the steps.
Several applications use token-based authentication, usually linked to a Facebook account in order to obtain basic information about the user (name, surname, email address, profile picture). However, tokens are not used correctly, during transmission or storage, and can be stolen to access victims accounts.
Some companies do not correctly use encryption in the transmission process from the device to the servers and vice versa; some transmissions are carried out correctly using encrypted connections (via HTTPS), but others are carried out using the HTTP protocol and this exposes them to the interception by malicious people.
In this way, the bad guys can easily obtain information such as the location of the user. The profiles visited, information on the device in use and also conversations with other users. Potentially it is possible to take possession of the account and to exclude the legitimate owner from access.
A problem related to the app of meetings, but more related to the operating system, is present on Android. In fact, the applications contain extremely personal information, which can be prey to intruders if you use an outdated version of Android and vulnerable to attack. What is the concrete risk associated with these vulnerabilities? If in the worst cases, the account can be stolen, the real possibility is that personal data (name, surname, user location) or conversations with other users are subtracted.
Although the mantra ” I have nothing to hide ” is very fashionable, access to extremely sensitive information such as these can easily lead to difficult situations; the protection of one’s own privacy is a fundamental element, especially when it comes to information as personal and sensitive as those concerning one’s own sentimental and sexual life.
The most effective way to protect yourself is to rely on a VPN connection, while avoiding the use of open WiFi networks. Another measure is not to share personal information such as the places visited most frequently.
