The dating app Tea, designed for women to share experiences and safety tips about men, suffered a massive data breach exposing over 72,000 private images, including selfies and government IDs submitted for verification. The breach was discovered when hackers found Tea's backend database completely unsecured. The leaked data, which included private DMs, quickly spread online, contradicting the app's claims of only housing 'old data'. Although the app had seen rapid growth, reaching over 4 million users, the security failure has led to significant fallout. Critics have pointed to the use of 'vibe coding,' where developers rely heavily on generative AI to create apps without adequate security reviews. The original hacker attributed the breach to a lack of authentication in the database, highlighting broader concerns about the safety of using AI-generated code in app development. Affected users are encouraged to monitor their credit in light of the breach.

Source šŸ”—