Blue Origin New Glenn Rocket Explodes During Launch Pad Test, Delaying Space Ambitions 
Dell Raises 2027 Revenue Forecast as AI Server Demand Drives Record Quarterly Results 
Salesforce Q1 FY2027 Earnings Beat Expectations Despite Soft Q2 Revenue Outlook 
Lam Research Expands AI-Powered Semiconductor Tools and Arizona Operations 
Samsung Union Dispute Escalates Over Semiconductor Bonus Vote 
SpaceX Starship V3 Test Flight Boosts IPO Momentum Ahead of Historic Market Debut 
Meta AI Push Could Add $26 Billion in Revenue by 2027, Wolfe Research Says 
Xiaomi Shares Drop After Weak Q1 Earnings Amid Rising Smartphone Costs 
Morgan Stanley Names Top AI Security and Data Center Stocks for 2026 
EU Antitrust Probe Could Lead to Massive Google Fine Under DMA Rules 
Macquarie Names Five Taiwan AI Stocks Set to Benefit From Data Center Growth in 2026 
US Quantum Stocks Surge After $2 Billion Government Investment 
MongoDB Q1 FY2027 Earnings Beat Expectations, Raises Full-Year Outlook 
SK Hynix Joins $1 Trillion Club as AI Chip Demand Fuels Stock Surge 
Elon Musk Explores Possible Tesla-SpaceX Merger Amid Growing AI Investments 
PDG Explores $1 Billion Sale of China Data Center Assets 
SpaceX Delays Starship V3 Launch Ahead of Potential Record IPO 
With stay-at-home recommendations still in place in many parts of the world, the demand for dating apps has likely spiked. This also means that online dating platforms became another rich field for cybercriminals, so it is quite concerning when security researchers reported significant vulnerabilities found on the OkCupid app that caters to more than 50 million users.
OkCupid security flaws discovered by researchers
Check Point Research spotted some vulnerabilities on the OkCupid app that may have “allowed attackers to” control an account to some degree. The security issues could have led to the stealing of personal information, private data, and authentication tokens.
The researchers reverse-engineered OkCupid v.40.3.1 on an Android 6.0.1 device and found that it has a deep link function allowing a hacker to inject malicious links to execute an attack. Check Point also discovered that the OkCupid main domain could have been compromised using reflected cross-site scripting (XSS), an attack that hackers utilize to access a user’s cookies by injecting malicious scripts on a vulnerable website.
They were then able to prove that the security flaws would have let hackers steal profile data that users provide upon signing up on OkCupid. The vulnerability also made it possible to steal authentication tokens, send messages on behalf of the users, and collect other sensitive data such as email addresses for exfiltration. However, Check Point confirmed a complete account takeover was not possible because the cookies still had some protection.
OkCupid says no account was compromised, vulnerabilities fixed
Like any decent security research firm, Check Point informed OkCupid of the flaws of its app and domain before publishing their study. At the time of publication, Check Point noted that OkCupid has already “responsibly deployed” a fix on the issues they identified. The online dating platform assured the researchers, “Not a single user was impacted by the potential vulnerability on OkCupid, and we were able to fix it within 48 hours.”
OkCupid users, on the other hand, should also be aware of the basic methods to protect themselves online. It is always advised to use strong passwords and to not give away too much personal information on a dating app. It is also best to always have the latest version of any app to ensure they carry the latest security updates as well.
