Coffee Matches Bagel Dating App Warns Users of Breach

Skip to:

Share this informative article:

The site that is dating users’ names and e-mail details that have been put into the machine just before May 2018 could be affected.

Popular dating app Coffee Meets Bagel has sent its users a contact notifying them that their data might have been “acquired by an unauthorized celebration. ”

The news headlines comes times after having a massive database containing the information and knowledge of around 6.2 million Coffee matches Bagel users turned up from the black internet. Users received notice associated with breach (ironically) on Feb. 14, in a contact that was distributed to Threatpost.

Coffee matches Bagel is a favorite San Francisco–based relationship and networking website that is social. The app discusses each user’s Facebook account to aid choose matches that are potential them.

“With internet dating, individuals want to feel safe. When they don’t feel safe, they won’t share by themselves authentically or make meaningful connections. We just take that obligation really, therefore we informed our community the moment possible—regardless of what calendar date it dropped on—about what occurred and everything we are doing about any of it, ” a Coffee Meets Bagel representative told Threatpost.

Into the notification, Coffee Meets Bagel stated that the app that is dating of this breach on Feb. 11. Names and e-mail details which were put into the system ahead of might 2018 had been affected.

“On February 11, 2019, we discovered that an unauthorized celebration gained use of a partial variety of individual details. Even as we became conscious, we quickly took steps to determine the nature and range associated with the issue, ” the notification reads.

Email delivered to users.

The database containing an incredible number of records showed up and had been for sale from Monday in the black online, as an element of a bigger purchase of 617 million account that is online stolen from 16 hacked web sites, in line with the join. Other victim sites included Dubsmash, Armor Games, 500px, Whitepages and how to see who likes you on good grief without paying ShareThis, amongst others.

Based on that report, all 6,174,513 records had been on the market for 0.13 BTC, or $468. Which includes information siphoned between belated 2017 and mid-2018, including names that are full email details, age, enrollment date and sex.

Coffee suits Bagel confirmed to Threatpost that its breach is definitely for this database on the black internet, and therefore as much as 6 million users had been affected.

Coffee satisfies Bagel stated in the notification so it does not keep any information that is financial passwords. In addition stated so it has engaged forensic safety experts to conduct overview of its systems and architecture.

“As constantly, we advice you are taking additional caution against any communications that are unsolicited ask you to answer for individual data or refer one to a internet web web page requesting personal data, ” the notification reads. “We also recommend avoiding clicking on links or attachments that are downloading dubious e-mails. ”

Around this writing, there’s absolutely no notice associated with the information breach on Coffee Meets Bagel’s internet site.

Valentine’s woes day

This Valentine’s Day, the protection room has seen per week riddled with frauds and vulnerabilities focusing on individuals flocking to online dating sites. Many concerningly, a flaw that is critical the OkCupid software ended up being been disclosed on Thursday that may enable a negative actor to steal credentials, introduce man-in-the-middle assaults or entirely compromise the victim’s application.

Early in the day this week in an incident that is separate OKCupid denied an information breach after reports surfaced of users whining that their reports had been hacked.

And, in a fresh advisory posted on Tuesday, the Federal Trade Commission warned that reports of internet love frauds are increasing as cyber crooks gain the self-confidence of these victims and trick them into giving cash. In reality, this past year, individuals reported losing $143 million to romance scams – a higher total than for just about any other variety of scam reported, based on the FTC.

“These forms of frauds will maybe not anytime be disappearing soon. Peak times regarding the 12 months, Valentine’s Day included, draw out both the most effective in addition to worst in us, ” said Anupam Sahai, vice president of product administration at Cavirin, via e-mail. “Given the emotions, it really is no real surprise that relationship scam losings, averaging $2600 each, are 7x greater than almost every other frauds. There are numerous sites with recommended guidelines. Follow them! And them a hand. When you have vulnerable buddies or household, lend”