• World
  • Markets
  • Consumer
  • Business
  • Fintech
  • Opinion
  • Entertainment
Search
  • Credit Cards
  • Pre-Pay Credit Cards
  • Loans
    Secured Loans Unsecured Loans Home Improvement Loans Guarantor Loans Bad Credit Loans Car Loans Debt Consolidation Loans Payday Loans Cash Doorstep Loans Short Term Loans 12 Month Loans
  • Business
    Bridging Loans Invoice Factoring Debt Advice Key Man Insurance Crypto Currency
  • Shopping
    Catalogues With Credit
  • Financial News
    World Markets Consumer Business Brexit Fintech Opinions
  • World
    • World

      Minister of Finance in Kenya arrested for corruption

      FinTech

      Facebook Chooses London For HQ Of New WhatsApp Payment Service

      World

      Trump Imposes New U.S. Sanctions On Iran’s Metals Ondustry

      World

      Volvo Car Brand Polestar Chooses UK For New Development Hub Amidst…

      Markets

      Shares Of Lyft Hit Record Low

  • Markets
    • Markets

      Shares Of Lyft Hit Record Low

      Markets

      Tesla Boosts Capital Raise To $2.7bn

      Markets

      Thomas Cook In Talks With Lenders

      Markets

      Newell Brands: Toys ‘R’ Us Woes Ending

      Markets

      Italian Central Bank: Economic Risks Pose Biggest Threat To Italian Banks

  • Consumer
    • Consumer

      UK Holidaymakers Are Starting To Ramp Up Search For Summer Sun

      Consumer

      BNPL approach could help rejuvenate a pandemic-weary tourism sector

      Consumer

      Debt Experts’ Growing Unease Over Buy Now Pay Later Solutions

      Consumer

      Emergency Bill For Scottish Debt Assistance

      Consumer

      IVA Firms Now Offer Three Month Payment Holidays

  • Business
    • Business

      SME fintech Cashplus secures full UK bank licence

      Business

      Blow those costs away: Octopus Energy launches world’s first electricity tariff…

      Business

      TransferWise and Mastercard expand their global partnership

      Business

      GBP/USD hits 5 month high after BOE meeting

      Business

      Mastercard and ANNA Money enter next phase of partnership as the…

  • Fintech
    • FinTech

      Facebook Chooses London For HQ Of New WhatsApp Payment Service

      FinTech

      Moneyboat automates lending decisions with bespoke new data tool

      FinTech

      Checkout.com raises $230m in record European Series A

      FinTech

      UK Chancellor: London Will Be ‘Global Magnet For Tech Skills’ After…

      FinTech

      Re-Nationalisation Plans Of Labour Party Will Cost £175bn, Says CBI

  • Opinion
    • Opinion

      Can you Get a Loan with Bad Credit?

      Opinion

      No-deal Brexit could end up costing Brits an extra £2.2bn per…

      Opinion

      Youtube Set To Impose Ban On Dangerous Bird Box-Inspired Prank Videos

      Opinion

      Top Cryptocurrency Exchange CEO gives insight into the future of Bitcoin…

      Opinion

      Who is to blame for the death of small energy suppliers?

  • Entertainment
Home Consumer Security Flaw in Tinder Gave Account Access Using Only A Phone Number
  • Consumer
  • World

Security Flaw in Tinder Gave Account Access Using Only A Phone Number

By
Gregory Dy
-
February 21, 2018
Share on Facebook
Tweet on Twitter
Advertisment
By Tinder Inc. (https://www.gotinder.com/press) [Public domain], via Wikimedia Commons

The security researchers at Appsecure discover a way to access the Tinder account of anyone using their phone number. The said exploit took advantage of a flaw in the software in both the login process of the dating app as well as the Facebook API that it is based on. The said issues have been fixed since. However, it represents a pretty major lapse in security.

on Medium, Appsecure’s Anand Prakash, wrote: “Both the vulnerabilities were fixed by Tinder and Facebook quickly.” Tinder and Facebook rewarded the company $1250 and $5000, respectively, for the said report. This is not the first report regarding security flaws of Tinder, either, like when the company failed to encrypt the photos of users and exposed the exact locations of users for months back in 2014.

When users log in to Tinder, they have the option of using their phone number, which is then passed along to the Account Kit of Facebook for authentication to Tinder. The people at Appsecure discovered that they could get a valid access token using an API request to the Account Kit of Facebook using a phone number. Also, the login system of Tinder was not checking these access tokens to make sure that they matched the associated client ID of the user, which means that any valid access token could allow someone to log in to a  Tinder account of any user.

  • TAGS
  • tinder
  • tinder login
  • tinder security
  • tinder security flaw
SHARE
Facebook
Twitter
  • tweet
Previous articleDisney is Reportedly Planning A ‘Muppets’ Reboot For Its Streaming Service
Next articleUpdate Promised by Snapchat After Users Express Frustration Regarding App’s Redesign
Gregory Dy
Gregory Dy covers business and world news. He oversees breaking news coverage of national and international events.

RELATED ARTICLESMORE FROM AUTHOR

Consumer

UK Holidaymakers Are Starting To Ramp Up Search For Summer Sun

Consumer

BNPL approach could help rejuvenate a pandemic-weary tourism sector

Consumer

Debt Experts’ Growing Unease Over Buy Now Pay Later Solutions

LATEST NEWS

Donald Trump: China Behind Clinton Email Hacks

Gregory Dy - August 29, 2018
0
Photo via Worksmart Technology

Founder of Atom Bank Steps Down From Role As Chairman

January 25, 2018

UK High Street Experiences Record Number Of Stores Closures In 2018

April 10, 2019

MUST READ

Anglo American reboots dividend as it smashes financial obligation target

telegraph UK - July 28, 2017
0

White House: Trump ‘Not Involved’ in Deciding Whether Amazon Receives Multi-Billion Dollar Contract

Gregory Dy - April 4, 2018
0

Uber Agreed to Settle Second Lawsuit from Indian Rape Victim

Gregory Dy - December 9, 2017
0
Load more
Finance.co.uk is one of the leading financial news websites, bringing you the latest on stocks, shares, economy, business and consumer related news. We provide you with the latest breaking news and videos straight from the finance industry.

POPULAR POSTS

Top 7 Footballers And Their Massive Pay Packets

November 2, 2018

Trade War Of US President Trump Significantly Harming World Economic Health,...

July 21, 2018
Photo by Björn Láczay from Flickr

Bosses of Deutsche Bank Will Not Be Given Bonuses Following Third...

March 10, 2018

POPULAR CATEGORY

  • World2637
  • Markets930
  • Consumer847
  • Brexit795
  • Business534
  • FinTech110
  • Opinion86
  • Entertainment5
  • Complaints Procedure
  • Privacy Policy
  • Terms & Conditions
  • Contact Us
  • Guides
   

Our website is completely free for you to use but we may receive a commission from some of the companies we feature. Read more about how our site works here.
Finance.co.uk is a trading name of Paloma Digital Limited, registered in England (09562886). Our registered address is: 2911 Beetham Tower, 301 Deansgate, Manchester M3 4LT and authorised and regulated by the Financial Conduct Authority (FRN769794). We are classed as a credit broker for consumer credit, not a lender. Debt Solutions Subject to conditions and acceptance. Credit rating may be affected. Repaying debt over longer period may increase the total amount to be repaid. Fees payable if continuing services provided. Alternative free-to-consumer debt advice organisations as recommended by the Money Advice Service. *You may be required to pay a contribution towards your debts. Call charges may apply if calling from a mobile.

Edit with Live CSS
Save
Write CSS OR LESS and hit save. CTRL + SPACE for auto-complete.