OkCupid's Email Validation Fiasco: A Security Nightmare
Fastmail experienced a significant email validation vulnerability exploited by OkCupid, resulting in a deluge of spam emails to their official addresses, including a never-used junk address. Attackers used the vulnerability to register multiple accounts, sending fake 'someone likes you' messages and even impersonating users to modify profiles. OkCupid's customer support response was merely to block the email addresses, failing to address the root issue, exposing their disregard for user data security. This incident highlights the importance of robust email verification mechanisms and the lack of responsibility from companies regarding user data security. Fastmail recommends users employ different email addresses for different services to mitigate risks.