Help

BI’s Article search uses Boolean search capabilities. If you are not familiar with these principles, here are some quick tips.

To search specifically for more than one word, put the search term in quotation marks. For example, “workers compensation”. This will limit your search to that combination of words.

To search for a combination of terms, use quotations and the & symbol. For example, “hurricane” & “loss”.

Login Register Subscribe

Dating apps pose corporate security risk, says IBM

Reprints
Dating apps pose corporate security risk, says IBM

(Reuters) — The millions of people using dating apps on company smartphones could be exposing themselves and their employers to hacking, spying and theft, according to a study by International Business Machines Corp.

In a report published Wednesday, IBM security researchers said 26 of 41 dating apps they analyzed on Google Inc.'s Android mobile platform had medium or high severity vulnerabilities.

IBM did not name the vulnerable apps but said it had alerted the app publishers to problems.

Apps such as Tinder, OkCupid and Match have become hugely popular in the past few years due to their instant messaging, photo and geolocation services. About 31 million Americans have used a dating site or app, according to a 2013 Pew Research Center study.

IBM found employees used vulnerable dating apps in nearly 50% of the companies sampled for its research. Using the same phone for work and play, a phenomenon known as "bring your own device," or BYOD, means users and their employers are both open to potential cyber attacks.

"The trouble with BYOD is that, if not managed properly, the organizations might be leaking sensitive corporate data via employee-owned devices," said the IBM report.

IBM said the problem is that people on dating apps let their guard down and are not as sensitive to potential security problems as they might be on email or websites.

If an app is compromised, hackers can take advantage of users waiting eagerly to hear back from a potential love interest by sending bogus "phishing" messages to glean sensitive information or install malware, IBM said.

A phone's camera or microphone could be turned on remotely through a vulnerable app, which IBM warned could be used to eavesdrop on personal conversations or confidential business meetings. Vulnerable GPS data could also lead to stalking, and a user's billing information could be hacked to purchase things on other apps or websites.

IBM said it had not so far seen a rash of security breaches due to dating apps as opposed to any other kind of social media.

Meanwhile, it recommends that dating app users limit the personal information they divulge, use unique passwords on every online account, apply the latest software patches and keep track of what permissions each app has.

IAC/InterActiveCorp, which owns Tinder, OKCupid and Match, did not have any immediate comment on the IBM report.

Read Next

  • Dutch government website outage caused by cyber attack

    (Reuters) — Cyber attackers crippled the Dutch government's main websites for most of Tuesday and back-up plans proved ineffective, exposing the vulnerability of critical infrastructure at a time of heightened concern about online security.