Security researchers have found that a number of adult dating platforms were storing private user information on exposed, publicly-accessible databases.
Records were uncovered from services including 3somes, Cougary, Gay Daddy Bear, Xpal, BBW Dating, Casualx, SugarD, Herpes Dating, and GHunt.
In total, there was approximately 845 gigabytes of data and close to 2.5 million records, which contained messages, explicit images, identifying information and, in some cases, medical history.
The researchers also found screenshots of private chats from other platforms and receipts for payments, sent between users within the app as part of the relationships they were building.
There’s no evidence that the information was ever hacked, but the very real possibility was there.
Ran Locar, one of the researchers who discovered the leak, told Wired: “We were amazed by the size and how sensitive the data was. The risk of doxing that exists with this kind of thing is very real—extortion, psychological abuse.
“As a user of one of these apps you don’t expect that others outside the app would be able to see and download the data.”
Read more here.