Review of okcupid dating site simulatore di navigazione online dating
Some apps only allow users with premium (paid) accounts to send messages, while others prevent men from starting a conversation.
These restrictions don’t usually apply on social media, and anyone can write to whomever they like.
We’re talking here about intercepting and stealing personal information and the de-anonymization of a dating service that could cause victims no end of troubles – from messages being sent out in their names to blackmail.
We took the most popular apps and analyzed what sort of user data they were capable of handing over to criminals and under what conditions.
Most of the apps in our research are vulnerable when it comes to identifying user locations prior to an attack, although this threat has already been mentioned in several studies (for instance, here and here).
We found that users of Tinder, Mamba, Zoosk, Happn, We Chat, and Paktor are particularly susceptible to this.
We studied the following online dating applications: By de-anonymization we mean the user’s real name being established from a social media network profile where use of an alias is meaningless.
The Android version of Paktor uses the quantumgraph analytics module that transmits a lot of information in unencrypted format, including the user’s name, date of birth and GPS coordinates.
The Paktor app allows you to find out email addresses, and not just of those users that are viewed.
All you need to do is intercept the traffic, which is easy enough to do on your own device.
As a result, an attacker can end up with the email addresses not only of those users whose profiles they viewed but also for other users – the app receives a list of users from the server with data that includes email addresses.
This problem is found in both the Android and i OS versions of the app. Some of the apps in our study allow you to attach an Instagram account to your profile.
In Happn for Android there is an additional search option: among the data about the users being viewed that the server sends to the application, there is the parameter fb_id – a specially generated identification number for the Facebook account.