Tea, a girls’s security relationship app that surged to the highest of the free iOS App Retailer listings this week, has been the topic of a significant safety breach. The corporate confirmed Friday that it has “recognized approved entry to one among our techniques” that uncovered hundreds of person photos.
In accordance with Tea’s preliminary findings, the breach allowed entry to roughly 72,000 photos, damaged down into two teams: 13,000 photos of selfies and photograph identification that individuals had submitted throughout account verification and 59,000 photos that had been publicly viewable within the app from posts, feedback and direct messages.
These photos had been in a “legacy knowledge system” that contained data from greater than two years in the past, the corporate mentioned in assertion. “Presently, there isn’t a proof to counsel that present or further person knowledge was affected.”
Earlier Friday, posts on Reddit and 404 Media reported that Tea app customers’ faces and IDs had been posted on nameless on-line message board 4chan.
Tea requires customers to confirm their identities with selfies or IDs, which is why driver’s licenses and footage of individuals’s faces are within the leaked knowledge.
The premise of Tea is to offer girls with an area to report unfavorable interactions they’ve had whereas encountering males within the relationship pool, purportedly to maintain different girls secure. The app hit the No. 1 spot on Apple’s US App Retailer this week, drawing worldwide consideration and sparking a debate about whether or not the app violates males’s privateness. If the experiences of a breach transform true, it is going to additionally play into the broader ongoing debate round whether or not on-line id and age verification pose an inherent safety threat to web customers.
Within the privateness part on its web site, Tea says: “Tea Courting Recommendation takes affordable safety measures to guard your Private Info to stop loss, misuse, unauthorized entry, disclosure, alteration and destruction. Please remember, nevertheless, that regardless of our efforts, no safety measures are impenetrable.”
Tea mentioned it has launched a full investigation to evaluate the scope and influence of the breach.
