Particle.news
Download on the App Store
4 ARTICLES
·
2w ago

TeaOnHer Patches ID-Exposure Flaws While Original Tea Faces FBI Probe

Security researchers discovered that TeaOnHer’s open API loophole allowed ID scans to be extracted in under ten minutes; the flaw has been fixed, with no mass leaks surfacing.

a speckled photo of the TeaOnHer app
Image
Image
TeaOnHerLogo

Overview

  • TechCrunch researchers found that TeaOnHer’s unsecured public API allowed anyone to access users’ driver’s-license and ID scans in under ten minutes before the vulnerability was fixed.
  • Unlike the original Tea breach, which saw 72,000 verification images and private messages circulate widely online, there are no known reports of TeaOnHer data being reposted.
  • Tea continues remediation work while facing an FBI inquiry and consolidated class-action lawsuits over last month’s release of about 72,000 images and 1.1 million private messages.
  • As of mid-August, TeaOnHer ranks as the second most popular free iOS app in the U.S. App Store and Tea holds the third spot despite ongoing security concerns.
  • Privacy advocates warn that both apps’ combination of anonymous posts and ID-verification features heightens risks of doxxing, defamation and identity harm for users.