Coffee Matches Bagel Dating App Warns Users of Breach

Share this informative article:

The site that is dating users’ names and email details which were put into the machine ahead of might 2018 can be impacted.

Popular dating app Coffee Meets Bagel has delivered its users a contact notifying them that their information might have been “acquired by the unauthorized celebration.”

The news headlines comes days after having a massive database containing the data of around 6.2 million Coffee satisfies Bagel users turned up in the black online. Users received notice regarding the breach (ironically) on Feb. 14, in a contact that was distributed to Threatpost.

Coffee satisfies Bagel is a favorite San Francisco–based relationship and social media web site. The software talks about each user’s Facebook account to greatly help select prospective matches for them.

“With internet dating, individuals need certainly to feel safe. They won’t share themselves authentically or make meaningful connections if try this out they don’t feel safe. That responsibility is taken by us seriously, therefore we informed our community the moment possible—regardless of what calendar date it dropped on—about what occurred and everything we are doing about any of it,” a Coffee Meets Bagel representative told Threatpost.

Into the notification, Coffee Meets Bagel stated that the app that is dating associated with breach on Feb. 11. Names and email details that have been included with the operational system ahead of May 2018 had been affected.

“On February 11, 2019, we discovered that an unauthorized party gained usage of a partial a number of user details. If we became mindful, we quickly took actions to determine the nature and range of the issue,” the notification reads.

The database containing millions of records showed up and had been for sale from Monday in the black online, as an element of a larger purchase of 617 million account that is online taken from 16 hacked internet sites, based on the join. Other victim sites included Dubsmash, Armor Games, 500px, Whitepages and ShareThis, and others.

Based on that report, all 6,174,513 records had been on the market for 0.13 BTC, or $468. Which includes information siphoned between late 2017 and mid-2018, including full names, e-mail details, age, enrollment date and gender.

Coffee suits Bagel confirmed to Threatpost that its breach is definitely from the database located on the black internet, and therefore as much as 6 million users had been affected.

Coffee suits Bagel stated when you look at the notification so it does not keep any economic information or passwords. Additionally stated that it has engaged security that is forensic to conduct overview of its systems and architecture.

“As constantly, we suggest you are taking additional care against any communications that are unsolicited ask you for individual information or refer you to definitely a internet web page requesting individual data,” the notification reads. “We additionally recommend avoiding clicking on links or attachments that are downloading suspicious e-mails.”

Around this writing, there is absolutely no notice associated with the data breach on Coffee Meets Bagel’s internet site.

Valentine’s Day Woes

This Valentine’s Day, the safety room has seen per week riddled with frauds and weaknesses focusing on individuals flocking to sites that are dating. Most concerningly, a crucial flaw in the OkCupid software ended up being been disclosed on Thursday which could enable a negative actor to take credentials, introduce man-in-the-middle attacks or entirely compromise the victim’s application.

Earlier in the day this week in a split incident, OKCupid denied an information breach after reports surfaced of users complaining that their records had been hacked.

And, in an innovative new advisory posted on Tuesday, the Federal Trade Commission warned that reports of internet love scams are increasing as cyber criminals gain the self-confidence of these victims and trick them into delivering cash. In reality, this past year, individuals reported losing $143 million to romance scams – a higher total than for almost any other form of scam reported, based on the FTC.

“These forms of scams will likely not be vanishing anytime quickly. Times regarding the Valentine’s Day included, bring out both the best and the worst in us,” said Anupam Sahai, vice president of product management at Cavirin, via email year. “Given the emotions, it really is not surprising that romance scam losings, averaging $2600 each, are 7x greater than almost every other frauds. There are lots of web sites with recommended best practices. Follow them! And them a hand. when you yourself have vulnerable buddies or household, lend”