There are known privacy concerns with the use of Tinder, a popular dating app. In this paper, we examine previous attacks on Tinder that have not been documented academically. We also documented the Tinder network API in order to test the previous attacks in a live environment. Although our testing revealed accurate user location data, which was the crux of the prior attacks, has since been patched; we were able to: associate a Facebook profile with a Tinder account due to their shared information, see Facebook pages a user had liked or was a member of, as well as gather user images, which Tinder sends via plain HTTP, for a reverse image search. We also demonstrated the potential for a less accurate location attack that takes into account Tinder’s updated security.
CITATION STYLE
Carman, M., & Choo, K. K. R. (2017). Tinder me softly – How safe are you really on tinder? In Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST (Vol. 198 LNICST, pp. 271–286). Springer Verlag. https://doi.org/10.1007/978-3-319-59608-2_15
Mendeley helps you to discover research relevant for your work.