A security flaw in five dating platforms developed by M.A.D Mobile resulted in nearly 1.5 million explicit images being stored online without password protection. Ethical hacker Aras Nazarovas alerted the firm about the vulnerability, which allowed unauthorized access to these private photos. M.A.D Mobile was informed of the issue in January but failed to act until contacted by the BBC. While no identifying information was linked to the images, potential risks included extortion and dangers for users in countries hostile to LGBT communities. After initial exposure, the flaw has been addressed by the company.
The discovery of unprotected sensitive material comes with a significant risk for the platforms' users. Malicious hackers could have found the images and extorted individuals.
The first app I investigated was BDSM People, and the first image in the folder was a naked man in his thirties... This folder should not have been public.
Collection
[
|
...
]