Skip to main content
  1. Home
  2. Mobile
  3. News

Group dating app 3Fun caught exposing real-time locations, private photos

By

3Fun, a dating app for arranging threesomes with more than 1.5 million users, exposed sensitive information, including real-time locations and private pictures.

The app’s lack of security was discovered by Pen Test Partners, which claimed that 3Fun featured what was “probably the worst security for any dating app we’ve ever seen” with none of the user data protected by encryption.

Recommended Videos

According to Pen Test Partners, other dating apps such as Grindr were criticized for user location disclosures in the past through trilateration, which grabbed a person’s exact location through the exploitation of the “distance from me” feature in apps by spoofing GPS positions.

Please enable Javascript to view this content

3Fun, however, extracted the latitude and longitude coordinates of users, and even if they restricted sending that information, the data was still on the server. Through it, Pen Test Partners was able to pinpoint the locations of the group dating app’s users across several major cities. Some were even found in the White House, the U.S. Supreme Court, and in Number 10 Downing Street in London, though they were likely spoofing their locations.

Pen Test Partners also found that the private photos of people on 3Fun were also exposed, even when they used the proper privacy settings. Other exposed user information includes birth dates, gender, sexual orientation, and preferred matches. In addition, users may spoof their location to find out information about other users in a specific area.

Pen Test Partners forwarded its findings to TechCrunch, which ran the same tests and confirmed the findings against 3Fun’s security.

Making matters a bit worse was that when Pen Test Partners reached out to 3Fun on July 1 regarding the data privacy issues, the team behind the app asked for suggestions on what they could do to fix the problems. Pen Test Partners founder Ken Munro told TechCrunch that the 3Fun team took weeks to patch up the issues.

“3fun took action fairly quickly and resolved the problem, but it’s a real shame that so much very personal data was exposed for so long,” according to Pen Test Partners.

The data privacy issues involving dating apps follow the mishap with Coffee Meets Bagel, which announced on Valentine’s Day that an unauthorized party had gained access to user data.

Topics
Aaron Mamiit
Aaron Mamiit
Contributor
Aaron received an NES and a copy of Super Mario Bros. for Christmas when he was four years old, and he has been fascinated…
Samsung might charge a bomb for the svelte Galaxy S25 Edge
Leaked skin render of Samsung Galaxy S25 Edge.

So far, Samsung has only given a see-but-no-touch glimpse of its ultra-thin Galaxy S25 Edge smartphone. It’s going to be a vehicle of engineering showcase for Samsung, but to an average buyer, the phone might leave a rather big hole in their wallets.
According to the folks over at Android Headlines, Samsung Galaxy S25 Edge’s 12GB RAM / 256GB storage variant will reportedly fall in the ballpark of €1,200 and €1,300, which roughly translates to $1,300 and $1,400 based on current conversion rates.
For the higher end-variant with double the onboard storage, Samsung is reportedly eyeing an asking price in the range of €1,300 and €1,400m, which broadly comes in at $1,400 to $1,522 apiece. For comparison, Apple’s upcoming iPhone 17 Air could cost somewhere around $900 upon its launch later this year. 

A sliver of hope

Read more
Comprehensive Google Pixel 9a leak reveals pretty much everything
Alleged depiction of Google Pixel 9a.

Google’s next mid-range smartphone in the Pixel-A series is reportedly right around the corner. Unsurprisingly, Google has done a poor job of keeping the leaks in check. The latest one gives a full-fledged video review treatment to the upcoming Pixel 9a, diving deep into its hardware, specs, and performance based on real-life testing.

The video comes courtesy of tech influencer Sahil Karoul, and shows the phone in a light pink shade. In the video, Karoul mentions two storage variants — 128GB and 256GB — for the Pixel 9a. The packaging is nearly identical to the mainline Pixel 9 series phones, which also means there is no charging brick in the box.
Those bezels are an eyesore

Read more
Apple now sells a two-story AirPower charging stand, but there’s a catch
Zens Quattro Wireless Charger Pro 4

If you were one of the people eagerly awaiting the launch of the AirPower wireless mat that Apple never actually launched, we have some news that might be music to your ears. 

Unfortunately it's not that Apple has decided to launch the AirPower charging mat after all, but there is a charging device available exclusively on the Apple Store in a white and silver colour way that will charge four devices at once. If you remember, AirPower was only designed to power three.

Read more