A story which ticks a couple hot-button topics for security professionals and security reporters alike on Wednesday, March 28, NBC reported Grindr security flaws expose users‘ location data. ItвЂ™s centered across the salacious subject of online dating sites in the LGBT community, and hits a individual security concern for folks utilizing the application everywhere, as well as the likelihood of outing LGBT individuals in areas clover.com where being homosexual, bisexual, or trans is illegal or dangerous.
Regrettably, this tale is accountable of a number of the kind that is worst of FUD вЂ” fear, doubt, and question вЂ” that still takes place when some journalists cover our industry. I am right right here to share with you, dear Grindr user, you’ll find nothing taking place at Grindr that is unreasonably exposing where you are information. In this instance, the angel is within the details.
WhatвЂ™s Not Just A Vuln
Eventually, once you see the the NBC tale, you can observe where this reporting shifts from news to FUD:
His site permitted users to see who blocked them on Grindr once they entered their Grindr password. Once they did soвЂ¦
IвЂ™m going to simply stop you immediately, because this is a fairly big flag that is red this described vulnerability. вЂњAfter they entered their Grindr account,вЂќ means, вЂњAfter the consumer voluntarily compromised themselves.вЂќ Any vulnerability that reveals individual information that depends totally on already obtaining the bit that is best of individual information available вЂ” the password вЂ” is not a vulnerability. „Actually, Grindr is okay: FUD and Protection Reporting“ weiterlesen