According to sources, the gay dating and hook up app, Jack’d has got a bug which is allowing people to access private data. Here’s what is at risk.
As the Register announced on Tuesday, anybody with an internet browser can get access to Jack’d’s user’s photographs, regardless of whether they are set to private or whether they have been shared or not.
The app, which has been downloaded over 100,000 times and boasts hundreds of thousands of users, gives gay and bi men a chance to talk each other up, trade private and open pics, and orchestrate meetings.
“Known about the security concerns for several months”
The Register says that the app’s creators have known about the security concerns for several months.
There is no requirement for users looking to get access to private data to prove their right to access or even agree to accept the application’s terms of use.
Jack’d says the application has five million customers in nations around the globe.
Mark Girolamo, chief executive of Jack’d parent company Online Buddies said, “Our tech team is aware of the photo vulnerability and has already programmed the changes for this fix.
“They will deploy the fix this Thursday, February 7.”
Users at risk
Users who may not be out to their families or co-workers chance having their sexuality uncovered, while the bug puts users in danger of torment or blackmail by potential abusers.
Delete data until the fix
San Francisco-based reporter Sean Nichols writes: “The app should place strict access restrictions on which images should be viewable so that if one user allows another user to see a [picture], only the receiver should be allowed to see it.”
Nichols recommends users may want to remove their private photos until the fix has been implemented.
YOUR SUPPORT MEANS EVERYTHING
Help us deliver unique, usable and reliable journalism that supports the gay, bisexual and curious community of the United Kingdom. Can you help protect LGBT+ media? Publishers like us have come under severe threat by the likes of Google and Facebook. The problem is that advertisers are choosing to put their money with them, rather than with niche publishers like us. Our goal is to eliminate banner ads altogether on site and we can do that if you could pledge us a tiny amount each month.
We’re asking our readers to pledge just £1 per month, more if you’re feeling swanky. You can stop payment at any time.
It’s quick and easy to sign up and you’ll only have to do it once.