Dating App Cerca Leaks Thousands of User Profiles Due to Critical Vulnerabilities
2025-05-12
A security researcher discovered critical vulnerabilities in the dating app Cerca, exposing the personal information of thousands of users, including phone numbers, university emails, and even national ID information. The researcher responsibly disclosed the vulnerabilities to Cerca in late February but received no response. The vulnerabilities allowed attackers to access user profiles, private messages, and even force matches between users. While the vulnerabilities have since been patched, Cerca has not publicly acknowledged the incident or informed affected users. This highlights the critical need for startups to prioritize security and promptly respond to security vulnerability reports.
Read more
Tech