Dating site like tinder Virtual sex chat game pics
More specifically, in Tinder, Happn and Bumble users can add information about their job and education.
Using that information, we managed in 60% of cases to identify users’ pages on various social media, including Facebook and Linked In, as well as their full names and surnames.
Most of the applications use SSL when communicating with a server, but some things remain unencrypted.
For example, Tinder, Paktor and Bumble for Android and the i OS version of Badoo upload photos via HTTP, i.e., in unencrypted format.
This method is quite laborious, though the services themselves simplify the task: an attacker can remain in one place, while feeding fake coordinates to a service, each time receiving data about the distance to the profile owner.
During our research, we also checked what sort of data the apps exchange with their servers.
First of all, we checked how easy it was to track users with the data available in the app.This is done using the authentication token the app receives from Facebook.By modifying this request slightly – removing some of the original request and leaving the token – you can find out the name of the user in the Facebook account for any Happn users viewed.In Happn for Android there is an additional search option: among the data about the users being viewed that the server sends to the application, there is the parameter fb_id – a specially generated identification number for the Facebook account.
The app uses it to find out how many friends the user has in common on Facebook.
Some apps only allow users with premium (paid) accounts to send messages, while others prevent men from starting a conversation.