TechCrunch revealed a significant security lapse at the Raw dating app, which compromised users' private data, including display names, birth dates, dating preferences, and highly specific location coordinates. Despite Raw's claims of employing end-to-end encryption, an investigative analysis found no such evidence, leading to users' data being accessible publicly. This situation arises amidst the company's announcement of its upcoming hardware, the Raw Ring, intended for monitoring partners' biometric information. After being alerted by TechCrunch, Raw secured the vulnerabilities and promised to enhance their protective measures against future breaches.
"All previously exposed endpoints have been secured, and we've implemented additional safeguards to prevent similar issues in the future," Marina Anderson, co-founder of Raw, told TechCrunch by email.
TechCrunch found no evidence that the app uses end-to-end encryption. Instead, we found that the app was publicly spilling data about its users to anyone with a web browser.
Collection
[
|
...
]