Sign-up to a data breach claim today - use our quick and easy form to begin your claim for thousands of pounds in compensation.
News of an OkCupid data breach has been denied by the company, although a “bug” has reportedly been found by a security firm anyway.
Some users reportedly complained of their accounts being hacked and taken over. As a result of a lack of additional security, like two-factor authentication – a lack of security apparently common in the dating site industry – some users were successfully targeted by criminals.
However, OkCupid denies that a security breach has taken place. That being said, a “bug” was reportedly identified by security researchers and has apparently been fixed.
The reported OkCupid data breach incidents surround account takeover. Accounts have apparently been hacked into and then the email address used to login, and the password, have been changed. Some users have been unable to get back into their accounts because OkCupid is said to only correspond with the email address on the account.
A spokesperson for the dating company said:
“There has been no security breach at OkCupid. All websites constantly experience account takeover attempts. There has been no increase in account takeovers on OkCupid.”
The takeovers are being blamed on the usual issue of people reusing their access credentials across multiple sites. If their user credentials have been hacked elsewhere, criminals may attempt to use those credentials on other sites, like OkCupid. If you’ve reused them, you’re probably going to get hacked unless the site has better security.
However, there’s been at least one case where the hacked user says they didn’t reuse their credentials at all. If that’s the case, how have their credentials – unique to OkCupid – been compromised?
A security team has reportedly found a “bug” affecting the android app. It could apparently allow messages to be sent that were disguised as the app and could direct someone to a fake website to re-enter their credentials.
There were worries as to whether messages between users could be intercepted and whether location services could also be abused.
This “bug” was apparently fixed, although as we said above, it’s denied that there has been an actual OkCupid data breach itself.
It’s certainly an issue to keep an eye on, though. Victims of a genuine incident can be entitled to claim for data breach compensation.
EasyJet admits data of nine million hacked
British Airways data breach: How to claim up to £6,000 compensation
Are you owed £5,000 for the Virgin Media data breach?
Virgin Media faces £4.5 BILLION in compensation payouts
BA customers given final deadline to claim compensation for data breach
Shoppers slam Morrisons after loyalty points stolen
Half a million customers can sue BA over huge data breach
Lawyers accuse BA of 'swerving responsibility' for data breach
The biggest data breaches of 2020