Plenty of Fish leaks private user information
Users have private information freely displayed on their dating profiles
Lonely hearts may need to update their profiles after one of the world's top dating apps revealed it had suffered a serious data breach.
Plenty of Fish (PoF), which reportedly has around 150 million registered users worldwide, has had issued a patch for its mobile app after a security researcher found it was leaking information that users had set to “private” on their profiles.
The affected information included the first names and postal ZIP codes of PoF users, putting them at risk not just online, but in the real world too.
- Facebook data breach sees millions of user personal details leaked online
- Best security key 2020: top hardware keys for online protection
- Data breaches hitting more companies than ever
Diligent
The breach was uncovered by a security researcher known as The App Analyst, who found that both the Android and iOS apps, as well as the PoF web application, were affected.
When signing up for the service, PoF asks prospective users to provide a selection of personal data to help tailor their romantic matches, including a home ZIP code to make sure local users can be shown.
Although the site says that certain information will not be displayed on a user's profile, this information is still accessible via the app's API using freely available tools.
"Plenty of Fish was quite responsive and diligent with regards to rolling out a fix for revealing a users home ZIP code," the App Analyst wrote in a blog post outlining the findings.
Are you a pro? Subscribe to our newsletter
Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!
The news is also alarming as it comes after several high-profile incidents in which users of gay dating app Grindr have been lured into false meetings which have seen users attacked and robbed.
PoF says it has confirmed the privacy concerns are no longer present in the app's API, but users may still wish to update their profiles and display preferences in order to ensure no personal information is at risk.
- Stay safe online with the best VPN service of 2019
Via TechCrunch
Mike Moore is Deputy Editor at TechRadar Pro. He has worked as a B2B and B2C tech journalist for nearly a decade, including at one of the UK's leading national newspapers and fellow Future title ITProPortal, and when he's not keeping track of all the latest enterprise and workplace trends, can most likely be found watching, following or taking part in some kind of sport.