Coffee Meets Bagel Dating App Warns Users of Breach

Share this informative article:

The dating internet site stated users’ names and e-mail addresses that have been included with the system just before might 2018 can be impacted.

Popular dating app Coffee Meets Bagel has delivered its users a contact notifying them that their information might have been “acquired by an unauthorized celebration.”

The news headlines comes times after a massive database containing the knowledge of around 6.2 million Coffee matches Bagel users turned up from the Dark internet. Users received notice regarding the breach (ironically) on Feb. 14, in a message that was shared with Threatpost.

Coffee matches Bagel is a well known San Francisco–based relationship and networking website that is social. The software talks about each user’s Facebook account to help pick out matches that are potential them.

“With internet dating, individuals have to feel safe. They won’t share themselves authentically or make meaningful connections if they don’t feel safe. We just take that responsibility really, therefore we informed our community as soon as possible—regardless of what calendar date it dropped on—about what occurred and that which we are performing about any of it,” a Coffee Meets Bagel representative told Threatpost.

Within the notification, Coffee Meets Bagel stated that the app that is dating associated with the breach on Feb. 11. Names and e-mail details which were included with the operational system ahead of might 2018 had been affected.

“On February 11, 2019, we discovered that an unauthorized celebration gained use of a partial selection of individual details. Even as we became mindful, we quickly took actions to look for the nature and range regarding the issue,” the notification reads.

The database containing an incredible number of records showed up and was for sale from Monday from the black internet, as an element of a more substantial purchase of 617 million online account details taken from 16 hacked sites, in line with the enroll. Other target internet sites included Dubsmash, Armor Games, 500px, Whitepages and ShareThis, and others.

In accordance with that report, all 6,174,513 records had been on the market for 0.13 BTC, or $468. Which includes information siphoned between belated 2017 and mid-2018, including full names, email addresses, age, enrollment date and sex.

Coffee suits Bagel confirmed to Threatpost that its breach is definitely from the database on the black online, and that as much as 6 million users had been affected.

Coffee satisfies Bagel stated when you look at the notification it does not keep any monetary information or passwords. It stated so it has involved forensic safety professionals to conduct analysis its systems and architecture.

“As always, we suggest you are taking additional care against any communications that are unsolicited ask you to answer for personal information or refer you to definitely a internet web page requesting personal data,” the notification reads. “We also recommend avoiding clicking on links or downloading attachments from suspicious e-mails.”

Around this writing, there is absolutely no notice associated with information breach on Coffee Meets Bagel’s internet site.

Valentine’s Day Woes

This Valentine’s Day, the safety area has seen a week riddled with scams and weaknesses focusing on people flocking to internet dating sites. Many concerningly, a flaw that is critical the OkCupid app ended up being been disclosed on Thursday which could enable a poor actor to steal credentials, introduce man-in-the-middle attacks or entirely compromise the victim’s application.

Previously this week in an incident that is separate OKCupid denied a information breach after reports surfaced of users complaining that their records were hacked.

And, in a fresh advisory posted on Tuesday, the Federal Trade Commission warned that reports of internet love frauds are increasing as cyber crooks gain the self-confidence of the victims and trick them into delivering cash. In fact, a year ago, people reported losing $143 million to romance scams – a higher total than for almost any other sort of scam reported, based on the FTC.

“These forms of scams will maybe not anytime be disappearing quickly. Times of this Valentine’s Day included, bring out both the best and the worst in us,” said Anupam Sahai, vice president of product management at Cavirin, via email year. “Given the emotions, it’s no real surprise that love scam losings, averaging $2600 each, are 7x greater than almost every other victoria dating site frauds. There are numerous internet sites with recommended guidelines. Follow them! And when you yourself have vulnerable buddies or family, lend them a hand.”