A Hong Kong-based technologist discovered serious vulnerabilities in Tantan, China’s popular dating app, the South China Morning Post reports. “I found they weren’t encrypting anything,” said Larry Salibra, who discovered the security flaws. “You can see anything the clients enter into the app and anything the client sends back to the server: their phone number, their password, their location coordinates,” adding, “if you wanted to do bad things to people or steal someone’s identity… it’s not that difficult.” Tantan leadership has taken note. “[To] not have HTTPS/SSL [encryption] really is a bad idea in general and we are working on releasing it as soon as possible,” said the company’s CEO, Yu Wang. “We have also taken special steps to prevent others from being able to pinpoint your location.”
If you want to comment on this post, you need to login.