Therefore I reverse engineered two dating apps.

Therefore I reverse engineered two dating apps.

And I also got a session that is zero-click along with other enjoyable weaknesses

On this page I reveal a few of my findings through the reverse engineering for the apps Coffee Meets Bagel therefore the League. We have identified a few critical weaknesses throughout the research, all of these have already been reported into the affected vendors.


In these unprecedented times, greater numbers of individuals are escaping to the electronic globe to deal with social distancing. Of these right times cyber-security is much more crucial than ever before. From my experience that is limited few startups are mindful of security guidelines. The businesses in charge of a big selection of dating apps are no exception. We began this small research study to see exactly just how secure the dating apps that are latest are.

Accountable disclosure

All high severity weaknesses disclosed in this article have already been reported towards the vendors. By the period of publishing, matching patches happen released, and I also have actually separately confirmed that the repairs come in destination.

I am going to perhaps perhaps not offer details in their APIs that is proprietary unless.

The prospect apps

We picked two popular apps that are dating on iOS and Android os.

Coffee Suits Bagel

Coffee satisfies Bagel or CMB for brief, launched in 2012, is famous for showing users a restricted amount of matches each day. Continue reading «Therefore I reverse engineered two dating apps.»