Researchers find private messages on Grindr, OkCupid not so private after all

The security holes in so many communication apps might just encourage people to consider the comparative safety of just hooking up in person
Researchers find private messages on Grindr, OkCupid not so private after all

The University of New Haven’s Cyber Forensics Research and Education Group is releasing a series of videos that highlight the security holes in popular apps like Grindr and OKCupid.

Not too long ago the group also called out Viber for not encrypting its photos, videos and maps. WhatsApp was also shown not to encrypt sent locations and the company and Viber has since fixed those weaknesses.

Psst, someone might be reading those naughty texts

The very nature of apps like OKCupid and Grindr encourage the sending of racy and possibly embarassing apps. But how much more embarassing would it be if someone could tap into those messages you send and use those as blackmail?

Besides OKCupid and Grindr, the researchers looked at 19 Android apps: Instagram, ooVoo, Tango, Kik, Nimbuzz, MeetMe, MessageMe, TextMe, HeyWire, Hike, textPlus, Words With Friends, Vine, Line, MyChat, WeChat, GroupMe, Whisper, and Voxer.

In the first of its five-day series of security videos, Instagram, ooVoo and OKCupid were highlighted. Watching the video demonstrates just how easy it was for someone snooping in on a conversation to save images sent through a communication between two users on ooVoo as well as Instagram.
Enough digging also allowed the snoopers to find old images from Instagram, among others. The problem here is that the services did not encrypt the images while sending them over, making them too easy to steal.

The group's lofty ambition, as stated on its website is to "become a national and international renowned multi-desciplinary research group in Cyber Forensics Science." Even if it's via reminding horny app users that somebody could be reading their messages, that's an admirable enough goal.

READ MORE: Give Cerberus a go for more Android security

[Source: Huffingtonpost]