*We just want readers to access information more quickly and easily with other multilingual content, instead of information only available in a certain language.* We will try to process as quickly as possible to protect the rights of the author. *The article has been translated based on the content of by If there is any problem regarding the content, copyright please leave a report below the article. Step 2 Click on Add Units -> Executable Grindr. The company said it was not aware of any malicious use of this method and announced that it would launch a “bug bounty” program to strengthen its security. Step 1 - Launch Flex on your iOS device and click on Add (+) and then New App and choose Grindr. Initially deaf to the alerts of researchers, Grindr ended up responding after many requests and corrected the bug. Especially since an attacker could have tried hundreds of emails until he found one actually registered on the platform. A colossal cocktail of data that can be reused for blackmail. He has accessed his conversations and settings, including all the information users give about Grindr, from their sexual preferences to their HIV status. #GRINDR SUBSCRIPTION HACK PASSWORD#The sequel is terrifying: Troy Hunt managed to log into his colleague Scott Helme’s account with the new password and was even able to use the new combination on the app. Grindr, a copy-paste hack // Source: Troy Hunt In other words, the link sent by the email supposed to be accessible only to the owner of the message was also displayed publicly in the console. #GRINDR SUBSCRIPTION HACK SERIES#Literally in the clear: a series of letters and numbers that you just need to copy and paste after the password recovery URL to go directly to the page to define it. #GRINDR SUBSCRIPTION HACK CODE#By opening the browser console, for example by right-clicking and “View the source code of the page” on Chrome, then going to the Network tab, the security researchers noticed that the “token” was displayed… in clear. Well.Ī seemingly secure process, but one that turns into a disaster because Grindr made a colossal mistake. Clicking on this link that only the owner of the email address can receive takes you to the password configuration page. It looks like a classic page: enter an email address and resolve a captcha to receive an email containing an authentication token in the form of a link. It all starts on the password recovery page of the Grindr website. Some high end brands can be expensive but there are some cheaper options that work just as well. Do you have to pay for grinder Depends on the brand and quality. Based on an alert from researcher Wassime Bouimadaghene and helped by Scott Helme, he was able to reproduce a perfectly childish hack, accessible to any Internet user who can open their browser’s console and use the copy / paste function. You can subscribe to Grindr unlimited by going to the settings page and selecting the subscription option. In a post on his blog on October 3, 2020, security researcher Troy Hunt showed how the gay dating site Grindr allowed anyone to hack any account, as long as it had the associated email address. A childish hack has been discovered to take possession of the Grindr accounts.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |