Lovense has addressed security vulnerabilities that exposed users' email addresses and enabled remote account takeovers. CEO Dan Liu is contemplating legal action due to alleged incorrect reports about the bugs. The vulnerabilities were reported by a security researcher who criticized the company's timeline for fixes, opting for a lengthy 14-month resolution rather than a quicker one-month fix that would require user notification. Lovense stated that its fixes mandate app updates for users, asserting no evidence of user data compromise exists despite verification by external sources.
Lovense confirmed that it has resolved security vulnerabilities that exposed users' emails and allowed account takeovers. CEO Dan Liu is investigating potential legal action.
The company faced criticism for not addressing security bugs quickly, taking 14 months instead of a quicker one-month fix that would inform users.
Lovense claimed no evidence suggests user data, including email addresses, has been compromised, despite TechCrunch's verification of the bug.
The CEO has considered legal action in response to what the company perceives as erroneous reports regarding the security vulnerabilities.
Collection
[
|
...
]