The women-only dating app Tea suffered a significant data breach when its unsecured database was discovered by hackers. Over 72,000 private images, including selfies and government IDs submitted for verification, were leaked online, compromising users' safety rather than protecting it. The breach exposed not only verification documents but also private messages. Despite the app's platform being designed to create a secure space for women, the lack of security protocols, described as ‘vibe coding’ by the original leaker, allowed this data to be accessed easily. Vibe coding refers to the hasty development using AI tools without proper security measures or reviews. The breach raises serious concerns about the use of generative AI in app development, as many startups increasingly rely on these tools, often leading to exploitable flaws in the code. Users are advised to enroll in credit monitoring services to mitigate risks from their personal information being publicly available.

Source 🔗