Tea bills itself as a safety dating app for women, allowing users to anonymously share details about men they have met. A new app called TeaOnHer has emerged that attempts to flip the script, with men sharing information about women they date. And while Tea drew scrutiny last month after revealed user information, including potentially identifying details such as phone numbers and personal anecdotes, the copycat app seems to be suffering from the same problem.
discovered several security issues at TeaOnHer, which is currently second most popular lifestyle app on iOS. (Tea is the current leader despite the issues). The publication reported that it identified a security flaw that allowed anyone to access TeaOnHer user data, including usernames, email addresses, uploaded driver’s licenses and selfies. It also found a possible second issue where the email address and plaintext password for Xavier Lampkin, founder and CEO of the app’s developer, was left exposed. These credentials appear to offer access to TeaOnHer’s admin panel, which is another security risk.
The full report at also raises concerns about the content shared on the app, which included spam posts with nude photos of women. It’s unclear how many of the roughly 53,000 users for TeaOnHer might be bots, or whether the app was ever meant to be used seriously; chunks of its description in the iOS store use near-identical language to Tea’s listing.
Source link
