Skip to main content
  1. Home
  2. Social Media
  3. News

There might be more security issues with Tinder than you thought

By

tinder for androidWhen popular dating app Tinder pulled an Instagram and branched out of its iPhone-only shell to cater to Android users, we were pretty excited. It’s one of the hottest new dating apps out there, focusing on the local talent thanks by only showing you dateables in your area. The only problem is, the app unwittingly exposed users’ locations in a recent security faux pas. According to a Quartz report, location data isn’t readily available on the Tinder app, but was easily accessed using a simple hack, leaving various accounts vulnerable. Upon learning about this security breach last weekend, Tinder’s CEO Sead Rad released a statement: “We had a very, very, very brief security flaw that we patched up very quickly. We were not exposing any information that can harm any of our users or put our users in jeopardy.”

Tinder found out about the problem and fixed it right away – that’s good, right? Unfortunately, the security breach Tinder claims to have under control is a lot more serious than they are admitting. Appthority, which analyzes apps for security issues, found out that the dating app is still putting users’ private data at risk. “Through our automated risk analysis engines, we noticed that the dating app Tinder received a very low Appthority Trust Score,” says Kevin Watkins, CTO and co-founder of Appthority. “We decided to take a closer look and made some surprising discoveries. We found that Tinder is serving up Facebook IDs and exact birth dates in its API information without the user’s knowledge.” Their findings also show that although Tinder stopped sharing specific latitudinal and longitudinal user information, the app is still sharing their exact distance away from another users – Watkins believes that anyone with some technical chops could get another user’s Facebook ID, birth date, and exact distance, along with the last time that Tinder user submitted their geo-location. “A motivated user could track someone down by spoofing their own location several times to see how far away they are,” Watkins explains.

Recommended Videos

From Appthority’s understanding, there doesn’t seem to be any reason for Tinder to send out super-specific location information that’s exact in distance, down to the decimal point. That’s just a wide-open opportunity for a lot of stalking, kidnapping, and who knows what else – they’re all pretty scary circumstances if you think about the type of people who would use this kind of data exposure maliciously.

Related

So should prospective online daters still use Tinder? “If you knew that strangers on Tinder could see your full name, birth date, and other info, would you still use the app? We recommend that users stop using Tinder or assume their whole Facebook profile and location are exposed,” Watkins urges. Of course, maybe you find no issues with these things being out there: You signed up for the app using Facebook, right? It stands to reason you want to be broadcasting a lot of information about yourself. Still, be wary of what this means: Someone who maybe likes you a little too much could use Tinder to find you in real life more easily than you think.

If there’s one thing to be learned from this (and the many other situations like this), it’s that one cannot be overly nitpicky when it comes to choosing what sort of personal information to unleash into the Internet wild. No matter how innovative or awesome or creative a site or app is, nothing’s fool-proof. If you’re still unconvinced, just take a look at this visual and interactive representation of 300 of the world’s biggest data breaches recently compiled by Information is Beautiful:

data breaches - information is beautiful
Image used with permission by copyright holder

Editors' Recommendations

Topics
Jam Kotenko
Jam Kotenko
Former Digital Trends Contributor
When she's not busy watching movies and TV shows or traveling to new places, Jam is probably on Facebook. Or Twitter. Or…
Bluesky barrels toward 1 million new sign-ups in a day
Bluesky social media app logo.

Social media app Bluesky has picked nearly a million new users just a day after exiting its invitation-only beta and opening to everyone.

In a post on its main rival -- X (formerly Twitter) -- Bluesky shared a chart showing a sudden boost in usage on the app, which can now be downloaded for free for iPhone and Android devices.

Read more
How to make a GIF from a YouTube video
woman sitting and using laptop

Sometimes, whether you're chatting with friends or posting on social media, words just aren't enough -- you need a GIF to fully convey your feelings. If there's a moment from a YouTube video that you want to snip into a GIF, the good news is that you don't need complex software to so it. There are now a bunch of ways to make a GIF from a YouTube video right in your browser.

If you want to use desktop software like Photoshop to make a GIF, then you'll need to download the YouTube video first before you can start making a GIF. However, if you don't want to go through that bother then there are several ways you can make a GIF right in your browser, without the need to download anything. That's ideal if you're working with a low-specced laptop or on a phone, as all the processing to make the GIF is done in the cloud rather than on your machine. With these options you can make quick and fun GIFs from YouTube videos in just a few minutes.
Use GIFs.com for great customization
Step 1: Find the YouTube video that you want to turn into a GIF (perhaps a NASA archive?) and copy its URL.

Read more
I paid Meta to ‘verify’ me — here’s what actually happened
An Instagram profile on an iPhone.

In the fall of 2023 I decided to do a little experiment in the height of the “blue check” hysteria. Twitter had shifted from verifying accounts based (more or less) on merit or importance and instead would let users pay for a blue checkmark. That obviously went (and still goes) badly. Meanwhile, Meta opened its own verification service earlier in the year, called Meta Verified.

Mostly aimed at “creators,” Meta Verified costs $15 a month and helps you “establish your account authenticity and help[s] your community know it’s the real us with a verified badge." It also gives you “proactive account protection” to help fight impersonation by (in part) requiring you to use two-factor authentication. You’ll also get direct account support “from a real person,” and exclusive features like stickers and stars.

Read more