The women-only dating safety app, Tea, experienced a significant data breach revealing over 72,000 private images, including selfies and government IDs, after hackers discovered its unsecured backend database. The leak, which included 59.3 GB of data, quickly spread online, compromising users’ private messages as well. With verification requiring users to upload an ID and selfie, the app aimed to keep out fake accounts but instead exposed its user base following claims of lax security measures like 'vibe coding.' As a result, some users’ information has already been mapped and is searchable online, prompting calls for credit monitoring to mitigate potential fallout. Despite Tea's rapid rise to popularity with over four million users, critics pointed out its tendency to focus on doxxing men while unintentionally endangering its female user base. The breach raises concerns over the intersection of emerging AI technologies, security vulnerabilities, and app development practices, with warnings from experts regarding the reliance on AI-generated code.

Source 🔗