Gran set you up, again. The dog-walking thing is more of a favour than a career. Cybersecurity is Always Sexy. Gran says he looks like a young Cary Grant. You googled. You peel off your comfy weekend lounge clothes.
And hail an Uber all while trying to keep an open mind. You are taking control of this dog and pony show you smile at your mental pun. You go to the app store and download Tinder. Let the swiping begin. Have you been there, swiped right?
This is the reality of the modern dating scene in Canada. Whether you turn to Tinder, Grindr, Bumble or OkCupid to find your forever, or your one-night stand, you need to protect more than your heart. Kaspersky Lab and B2B International, a research firm, conducted a study that found that one-in-three people are online dating, and the apps that they are using are vulnerable to hackers.
The study evaluated nine dating apps including Tinder, Bumble, OkCupid, Zoosk, and Happn and found that most had one, if not multiple, vulnerabilities. Dating makes you vulnerable enough without having to worry about your sensitive data. Information, such as listing specific names of workplace or school helped hackers to narrow in on users. Not all dating apps use SSL-encrypted channels when transferring data.
This means that hackers cannot just see the data but change it as well. The apps can allow for man-in-the-middle attacks MITM. This can be stopped if app servers verify the authenticity of certificates.
In the world of dating apps, cybersecurity is always sexy
Most apps studied did not verify certificate authenticity. This means that hackers can obtain authorization tokens for social media from the apps. Although the credentials are encrypted, the decryption key was extractable from the app is some cases. Six of the nine apps studied store messaging history and user photos with authentication tokens. So, if the hacker gains superuser allowance, they can see confidential information. Cybersecurity needs to be considered even when pursuing a fun fling online.
Protect your identity. If you have multiple profiles, make an effort to create different usernames. Do not use third-party devices, like ing in through Facebook, to access your dating app and do not link any social media s to your dating app even if you are trying to increase your Instagram followers. Have different and challenging passwords for each of your social media s. Any information that a threat agent can collect to gain a whole picture of you.
'are you real?' — inside an online dating scam
In early conversations, be wary of giving too much away. Keep early online dating on a need-to-know basis.
An attachment, a link, whatever they send you. Be wary of apps that put you in a radius of other users using GPS. GPS data and device information together can pinpoint you in the real world and make you a walking target.
Think you are being courted by a catfish? Phishing and social engineering are employed by hackers to dig up personal details to infiltrate, or scam. Online scammers exist in every dating app, fake pics, fake places, bots, criminals trying to get your personal or financial information, and pyramid scheme artists. The world of online dating is a strange and scary place. Start with their username.
Throw the username, or address if you have it, into Google for a start and see what happens. Try the profile pic. Take the profile photo and put it into a reverse image search engine TinEye, Google Images. You may find other social media or professional profiles.
Search it on Facebook. Or you can try using Pipl. Pipl is an aggregator that goes deeper than regular search engines. Disclaimer: We at ISA are not advocating cyber-stalking. These dating apps may open the gateway for cyber attacks when employees use them at the office. So, the IT department can make like Cupid and help employees find love, cyber-safely.
Online dating service
Online dating cyber-risks fall into two the people and the systems. A desire for a romantic relationship is feigned to infiltrate or gather data. Dating apps with chat options, combined with big data analytics make the online dating game more dangerous.
Determined cybercriminals can make connections with multiple people employed at one organization. From each of those connections, they can gain a nugget of information which can be collected to form a clearer picture of that company. This is especially true if AI is employed in the romantic phishing campaign. Cybercriminals can use collected data to gain access or compromise a company. Educate employees about spear phishing and social engineering scams and how conversations can be analyzed to gather confidential information.
Encourage them to keep their love life off of company devices. Your enterprise most likely has devoted a lot of time and money into defending against malware. Because roses die, but cybersecurity is always sexy.
Let's get cheeky!
Love is a battlefield Cybersecurity needs to be considered even when pursuing a fun fling online. If they ask for money or offer a ificant business opportunity, then virtually run away.
Always have security solutions installed across all of your devices. Every breath you take, every move you make Think you are being courted by a catfish? Related Articles.
August 16, August 9, August 3, . Follow Us. LinkedIn Twitter Facebook Youtube. Report an incident. Have a question? Technology Partners. Become an Infinity Partner.