Are you going to get hacked while looking for love online?

online dating sites hack
stokkete/123RF
As the stigma around online dating begins to fade, an increasing number of young (and older) Americans are wading out into the sometimes turbulent waters of sites and apps like OKCupid, Match.com, and Tinder. In fact, 15 percent of our nation’s inhabitants now say they’ve used some sort of digital matchmaking tool, which means that a lot of these sites and apps have a lot of people’s personal information. Sure, signing up for Tinder isn’t quite like applying for a credit card, but it should still be noted that many of these online dating services collect quite a bit of data on its users. And according to recent research from security provider Seworks and security tech company UpGuard, dating apps are ripe for the picking when it comes to the next big hack.

This Valentine’s Day, Pew Research estimated that some 38 percent of U.S. singles had a profile on a dating site or app. But according to Min-Pyo Hong of Seworks, these services are all extremely vulnerable to attack. Last Month, Hong and his team reviewed five “top dating apps,” and found that “all were vulnerable to hacking, containing exploits that would enable breaches similar to the infamous attack on Snapchat … or … the leaking of users’ data from an HIV-positive dating app.” And while Hong did not disclose which apps his team analyzed in his guest post for VentureBeat, he noted that “the two very most popular we analyzed have been downloaded between 10 million and 100 million times from Google Play alone.”

Key to Seworks findings were the fact that all five of the apps were 100 percent decompilable, which Hong explains as “a process that enables hackers to reverse engineer and compromise an app.” Worse yet, “none of the dating apps [they] analyzed had protections to prevent or delay unauthorized decompiling,” and one of the apps “was not using secure communications, making it easy for hackers to intercept data being exchanged between the app and the server.” And perhaps most alarming was the fact that the source code of these apps was obfuscated, or in plain text. Some of this text included “hard-coded key values, website addresses, and other critical information that could allow hackers access to sensitive data.”

But it’s not just apps that are problematic. When UpGuard used its Website Risk Grader on some of  “the world’s top dating sites,” they were met with some disappointing and rather alarming results. Websites can earn a maximum score of 950 based on “publicly accessible security factors, such as whether SSL is enabled, whether cookies are secure, how easily someone could falsify communication as the company and a number of other factors.” The lower the score, the higher the potential for security breaches.

EHarmony, one of the most famous (and perhaps oldest) of the dating sites, scored just 504, and PlentyOfFish, whose mobile application allows for use anytime, scored just 361. Even better known sites like Match.com could stand for some improvement — it scored a 741, with UpGuard noting that the site lacks “HSTS, secure cookies, and DNSSEC.”

So if you’re looking for love online, have at it — but be careful where you’re fishing.

Android

Popular Android navigation apps are just Google Maps with ads, researcher says

A malware researcher found that 19 free Android navigation apps on the Google Play Store were nothing more than Google Maps, but with ads. One of the apps asked for a payment to remove the ads, while some of them presented security risks.
Computing

Worried about your online privacy? We tested the best VPN services

Browsing the web can be less secure than most users would hope. If that concerns you, a virtual private network — aka a VPN — is a decent solution. Check out a few of the best VPN services on the market.
Computing

Data breach compromises 773 million records, 21 million passwords

A security researcher was alerted to a collection of breached data that included more than 773 million compromised records. After digging deeper, the breach was revealed to contain more than 21 million passwords.
Computing

Delete tracking cookies from your system by following these quick steps

Cookies are useful when it comes to saving your login credentials and other data, but they can also be used by advertisers to track your browsing habits across multiple sites. Here's how to clear cookies in the major browsers.
Home Theater

Report: Spotify preparing to launch $100 in-car streaming device

According to a report, people familiar with Spotify's plans say the company is readying a dedicated in-car music streamer that will cost $100. It will work with any Bluetooth-enabled audio system and can be controlled by voice.
Mobile

Here's how to convert a Kindle book to PDF using your desktop or the web

Amazon's Kindle is one of the best ebook readers on the market, but it doesn't make viewing proprietary files on other platforms any easier. Here's how to convert a Kindle book to PDF using either desktop or web-based applications.
Home Theater

Spotify adds artist-blocking feature, despite its denials

Though it continues to claim you can't do it, there's lots of evidence that Spotify has added an artist-blocking feature to its platform, making it easy for users to never hear a specific musician or band.
Computing

Yes, you can use Android apps on your Chromebook. Here's how

You can now get Android apps on your Chromebook! Google has enabled the Google Play Store app support on its Chrome OS and Chromebook hardware, so to get you started, here's our guide on how to get Android apps on a Chromebook.
Mobile

Is 5G as fast as they’re saying? We break down the speeds

We take a look at the kinds of speeds you can expect from 5G when the networks roll out. Find out 5G compares to the last generation of network technology, what the minimum and maximum speeds will be, and what it means for us.
Mobile

Tizen 4 arriving on Samsung’s Gear S3 and Gear Sport smartwatches

Samsung is updating the Gear S3 Classic, Gear S3 Frontier, and the Gear Sport to the newest version of Tizen 4. Along with of some little tweaks to usability and quality-of-life, Samsung has added some new features.
Mobile

Here are the best selfie cameras on the market, according to DxOMark

DxOMark, the company known for testing cameras, is now extending its smartphone analysis to include the front-facing camera. The Selfie ranking will be kept separate from the overall mobile score.
Deals

Here are 19 portable tech gadgets you’ll want to use every day

If you're looking for portable tech to keep you charged up while on the go (or for some great small gift ideas), we've rounded up 19 must-have gadgets. You'll find everything from a mini gaming controller to a folding Bluetooth keyboard.
Product Review

It may be basic, but the TicWatch E2 is all the smartwatch you need

Want a smartwatch that can track heart rate, has GPS, and interact with notifications — for cheap? Mobvoi’s Google Wear OS-based TicWatch E2 can do it all, for just $160.
Mobile

Mobvoi’s TicWatch E2 and S2 are the most affordable Wear OS smartwatches yet

Quality smartwatches don't have to be expensive, and Mobvoi's TicWatch is the proud paladin of that philosophy. Mobvoi's new TicWatch S2 and are both available for low prices from Amazon and Mobvoi's website.