Skip to main content
  1. Home
  2. Mobile
  3. News

Group dating app 3Fun caught exposing real-time locations, private photos

By

3Fun, a dating app for arranging threesomes with more than 1.5 million users, exposed sensitive information, including real-time locations and private pictures.

The app’s lack of security was discovered by Pen Test Partners, which claimed that 3Fun featured what was “probably the worst security for any dating app we’ve ever seen” with none of the user data protected by encryption.

Recommended Videos

According to Pen Test Partners, other dating apps such as Grindr were criticized for user location disclosures in the past through trilateration, which grabbed a person’s exact location through the exploitation of the “distance from me” feature in apps by spoofing GPS positions.

3Fun, however, extracted the latitude and longitude coordinates of users, and even if they restricted sending that information, the data was still on the server. Through it, Pen Test Partners was able to pinpoint the locations of the group dating app’s users across several major cities. Some were even found in the White House, the U.S. Supreme Court, and in Number 10 Downing Street in London, though they were likely spoofing their locations.

Pen Test Partners also found that the private photos of people on 3Fun were also exposed, even when they used the proper privacy settings. Other exposed user information includes birth dates, gender, sexual orientation, and preferred matches. In addition, users may spoof their location to find out information about other users in a specific area.

Pen Test Partners forwarded its findings to TechCrunch, which ran the same tests and confirmed the findings against 3Fun’s security.

Making matters a bit worse was that when Pen Test Partners reached out to 3Fun on July 1 regarding the data privacy issues, the team behind the app asked for suggestions on what they could do to fix the problems. Pen Test Partners founder Ken Munro told TechCrunch that the 3Fun team took weeks to patch up the issues.

“3fun took action fairly quickly and resolved the problem, but it’s a real shame that so much very personal data was exposed for so long,” according to Pen Test Partners.

The data privacy issues involving dating apps follow the mishap with Coffee Meets Bagel, which announced on Valentine’s Day that an unauthorized party had gained access to user data.

Editors' Recommendations

Topics
Aaron Mamiit
Aaron Mamiit
Contributor
Aaron received a NES and a copy of Super Mario Bros. for Christmas when he was 4 years old, and he has been fascinated with…
Is the Google Pixel 8a waterproof?
A render of the Google Pixel 8a with its scree turned on. It's against a light blue background.

Google's Pixel A series is an oddball compared to other midrange phones. Besides some mediocre features that fit the price, the A series phones surprisingly share some other attributes with their more premium siblings.

The all-new Google Pixel 8a is alike in this regard and shares such things as the Tensor G3 chip, wireless charging, and seven years of software support from Google. It's also the first A-series Pixel to get a 120Hz display. But if you're wondering whether or not the Pixel 8a is waterproof, here's what you need to know.
Is the Google Pixel 8a waterproof?

Read more
How to use Apple Music Sing
Apple Music Sing on an iPhone.

If you're someone who likes to sing along to your music a lot, then you might be interested to know that Apple Music has had a feature called Apple Music Sing that basically turns your iOS device or Apple TV into a karaoke machine.

Arriving late in 2022, the little-known feature enhances the lyrics feature of the Apple Music app that lets you read along with the words of your tunes. There's also a new volume control slider that lets you fade the vocal track out, so you can sing it yourself. Available only for Apple Music subscribers, it's a feature that's sure to be a holiday sing-along hit.

Read more
Does the Google Pixel 8a have a headphone jack?
A render of the Google Pixel 8a in its porcelain color, showing the front and back of the phone.

The Google Pixel 8a is the latest and greatest in Google’s midrange A-series smartphone lineup. It costs an affordable $499, but boasts many features that make Pixel phones so popular, including great camera hardware, a Tensor G3 chip, and a 120Hz refresh rate on its 6.1-inch OLED display. All of this makes it a great option for most people who aren’t looking for cutting-edge specs.

However, you might be wondering if it comes with a headphone jack so you can use it with wired earbuds. Smartphone manufacturers have increasingly eliminated this feature in favor of pushing customers to their own line of Bluetooth earbuds and headphones. Does this also apply to the Pixel 8a? Here’s the deal.
Does the Pixel 8a have a headphone jack?

Read more