Coffee Matches Bagel Dating App Warns Users of Breach

Coffee Matches Bagel Dating App Warns Users of Breach

The dating internet site said users’ names and e-mail details that were put into the machine ahead of might 2018 might be affected.

Popular dating app Coffee Meets Bagel has delivered its users a contact notifying them that their information might have been “acquired by the unauthorized celebration.”

The headlines comes times after a massive database containing the information and knowledge of approximately 6.2 million Coffee matches Bagel users turned up regarding the black online. Users received notice regarding the breach (ironically) on Feb. 14, in a contact that has been distributed to Threatpost.

Coffee matches Bagel is a well known San Francisco–based relationship and networking website that is social. The application talks about each user’s Facebook account to aid choose possible matches for them.

“With online dating sites, individuals need certainly to feel safe. They won’t share themselves authentically or make meaningful connections if they don’t feel safe. That responsibility is taken by us really, therefore we informed our community the moment possible—regardless of what calendar date it dropped on—about what took place and everything we are performing about any of it,” a Coffee Meets Bagel representative told Threatpost.

When you look at the notification, Coffee Meets Bagel stated that the app that is dating of this breach on Feb. 11. Names and e-mail details which were put into the operational system ahead of May 2018 had been affected.

“On February 11, 2019, we discovered that the unauthorized celebration gained usage of a partial selection of individual details. After we became conscious, we quickly took actions to look for the nature and scope for the nagging issue,” the notification reads.

Email provided for users.

The database containing scores of records showed up and had been for sale from Monday from the black online, included in a bigger purchase of 617 million account that is online stolen from 16 hacked web sites, in https://myasianbride.net line with the enter. Other target sites included Dubsmash, Armor Games, 500px, Whitepages and ShareThis, and others.

In accordance with that report, all 6,174,513 reports had been for sale for 0.13 BTC, or $468. Which includes information siphoned between belated 2017 and mid-2018, including names that are full e-mail addresses, age, enrollment date and sex.

Coffee suits Bagel confirmed to Threatpost that its breach is definitely from the database located on the black internet, and that up to 6 million users had been affected.

Coffee matches Bagel stated when you look at the notification so it does not keep any information that is financial passwords. It stated it has engaged security that is forensic to conduct analysis its systems and architecture.

“As constantly, we suggest you take additional care against any communications that are unsolicited ask you for individual information or refer you to definitely an internet web web web page seeking individual data,” the notification reads. “We additionally recommend avoiding clicking on links or attachments that are downloading dubious e-mails.”

Around this writing, there isn’t any notice regarding the information breach on Coffee Meets Bagel’s site.

Valentine’s Day Woes

This Valentine’s Day, the safety area has seen per week riddled with frauds and weaknesses focusing on individuals flocking to sites that are dating. Many concerningly, a critical flaw in the OkCupid software had been been disclosed on Thursday which could enable a negative actor to take credentials, introduce man-in-the-middle assaults or entirely compromise the victim’s application.

Earlier in the day this week in a split incident, OKCupid denied an information breach after reports surfaced of users complaining that their records had been hacked.

And, in a brand new advisory posted on Tuesday, the Federal Trade Commission warned that reports of internet love frauds are increasing as cyber crooks gain the self-confidence of these victims and trick them into delivering cash. In reality, a year ago, individuals reported losing $143 million to romance scams – a higher total than for just about any other style of scam reported, based on the FTC.

“These forms of frauds will perhaps not be vanishing anytime quickly. Peak times regarding the Valentine’s Day included, bring out both the best and the worst in us,” said Anupam Sahai, vice president of product management at Cavirin, via email year. “Given the emotions, it really is no real surprise that love scam losings, averaging $2600 each, are 7x greater than almost every other frauds. There are lots of websites with recommended guidelines. Follow them! And when you yourself have vulnerable buddies or family, provide them a hand.”