The hacker disclosed the personal data on a forum accessible to all.
NICOLAS ASFOURI / AFP
The American dating site MeetMindful has been the target of personal data theft.
A hacker managed to steal those of 2.28 million users of this service, reports the media specialized in computer
He then decided to post all of this data on a forum for hackers on Wednesday.
The latter is however easily accessible.
MeetMindful apologized on its site and its managers explained that the hacker was able "to exploit a now fixed vulnerability in our system and was able to export an outdated version of a list of basic user information"
The hacker did not have access to critical data
The personal data that has been stolen contains in particular names, first names, dates of birth, e-mail addresses, hashed passwords, places of residence, dating preferences, marital status, body data or even IP addresses or personal data. geolocation.
On the other hand, the hacker did not have access to more critical data such as photos, conversations or even financial information.
The dating service clarified that users who created or updated their account after March 2020 were not affected by this theft.
For others, it is recommended to change the password.
He also assured to work on their systems so that this type of attack does not happen again.
A hacker sells 629,000 profiles of a French dating app
Personal data: Google is testing solutions to replace cookies from third-party sites