On the web service that is dating has come under scrutiny after Check Point Research discovered a few protection flaws both in the company’s web site and software.

Always check aim unveiled that the weaknesses, if exploited, might have permitted a hacker to access and take the personal information of OkCupid users, along with potentially send messages from users’ accounts without an individual once you understand or consenting.

Also, effective breaches into OkCupid records could give attackers usage of users’ profile details, including individual private information, personal communications, intimate orientation, individual target, and all sorts of presented responses to your concerns expected by OkCupid’s profiling test.

Applying this information, hackers could maliciously impersonate other users, or otherwise manipulate the target’s information for nefarious ends.

Scientists from Check aim detailed the three-step attack method which will have enabled a hacker to a target users:

1. The hacker creates a harmful website link containing a targeted payload that initiates the assault
2. The hacker delivers the hyperlink towards the target that is intended or posts it in a general public forum for users to click
3. When the target clicks the hyperlink to start it, the harmful rule is executed, offering the hacker usage of the target’s account.

OkCupid is just one of the biggest online dating companies in the planet, with on average 50,000 dates arranged per week from about 90 million yearly connections. The solution saw a 20% bump in conversations since COVID-19 lockdowns had been imposed globally.