Thousands of users' personal data — including their IDs — were leaked from a popular male revenge dating app
But as it turns out, both apps suffered from serious security flaws that exposed thousands of users' personal data to the internet.
Tea, which became the number one most downloaded app on iPhone in July after going viral, lets women anonymously review men they've dated and bills itself as "the safest place to spill tea".
Last week it was joined at the top of the charts by TeaOnHer, a copycat app that offers to "help men date safe" with "verified reports" about "red flags, safety concerns, and positive experiences".
As of the time of publishing, TeaOnHer was the second most downloaded free app on the U.S. iPhone App Store, while Tea was the third.
Now both apps are facing potential class action lawsuits after hackers and tech journalists discovered that they were spilling a different kind of tea: leaking users' ID documents, selfies, and in some cases emails and private messages.
Tea rapidly took action to close the breach — but not before numerous angry (and seemingly mostly male) internet users gleefully downloaded and shared photos and ID documents from women who had used the app, according to 404 Media.
Meanwhile, one week after TeaOnHer's breach was discovered by TechCrunch, the issue finally appears to have been fixed. But the company behind it has offered no public comment, nor any indication that it has notified users about their drivers' licenses being leaked.
The company behind TeaOnHer also appears to have little web presence, and questions from The Independent to its only publicly accessible email address resulted in an automated bounceback.
"It turns out that the kind of people who write and launch an app in less than two weeks are not the kind of people who feel the need to implement secure coding practices and strong privacy protections for the sensitive user data they ask you to upload," said Eva Galperin, director of cybersecurity at the privacy-focused Electronic Frontier Foundation, on Bluesky.
The breaches shine a light not only on the dysfunctions of modern dating — and people's hunger for a solution — but also on the ethical quandaries of naming and shaming individual exes online.
'Are men not allowed to protect their reputations and stay safe too?'
Tea was first launched in 2023, apparently inspired by "Are We Dating the Same Guy" Facebook groups, which serve as an informal (and sometimes controversial) whisper networks about shady and abusive behavior.
"Founder Sean Cook launched Tea after witnessing his mother's terrifying experience with online dating — not only being catfished but unknowingly engaging with men who had criminal records," the app's about page reads.
As well as user testimonials, the app allows users to run background checks, check criminal records, and search for sex offenders near them. All posts are anonymous, but the app asks users to take a selfie to prove they are a woman, and in the past has asked for photo ID to verify their identity.
"I once had a sexual assault happen when I was younger, and if there had been an app like this I think he would have a lot less victims," wrote one reviewer on Apple's app store.
Another claimed that, within a day or two of using the app, she found evidence that a man she was courting was actually already married, leading her to confront him and then dump him.
Men who gave positive reviews to much newer TeaOnHer protested that they too need protection from and foreknowledge of unscrupulous dates.
"For weeks, women laughed while men were talked about anonymously — true or not — some lied on, and dragged online. But now that the tables are turning, suddenly it's uncomfortable?" wrote one.
"Are men not allowed to protect their reputations and stay safe too? Are men the only abusers/liars/cheaters?"
But other reviewers expressed alarm at what they found on the app, describing posts more focused on exposing women's sexual pasts than on genuine safety issues. "This isn't accountability, this is misogyny under the guise of concern," said one.
'Under ten minutes' to steal users' ID cards
When Tea's data breach was revealed, the app's operators said it had fixed the issue and that it had only affected users who joined before February 2024. Then came a second breach, affecting more recent material and forcing Tea to shut down its direct message function.
The people behind TeaOnHer, however, have said nothing. Its maker Newville Media Corporation has no currently functioning website, and neither the company nor its CEO Xavier Lampkin responded to messages from The Independent.
TeaOnHer's security was particularly lax. According to TechCrunch, it took less than ten minutes and only 'trivial' effort to access driver's licenses and email addresses, with no password or credentials required.
The app requires all users to submit government ID verification, but its App Store page falsely claims not to collect any data from users
Apple's rules say that app makers must identify all the data they collect on their App Store page, unless it meets certain exception criteria.
The Independent has asked Apple for comment.
Solve the daily Crossword
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
TechCrunch
28 minutes ago
- TechCrunch
TikTok's new guidelines add subtle changes for LIVE creators, AI content, and more
TikTok is preparing an update to its Community Guidelines, which dictate the rules for participating on the social video platform as well as what standards the company uses to determine the videos that make it onto its For You Feed. While the update largely rewrites the original text for simplicity's sake, there are a few items that jump out in the new revision — notably how TikTok prioritizes its marketplace, how deeply it personalizes the experience per user, and a small change to the type of AI-generated content that's permitted. Today, social media companies have to comply with a range of regulations globally, like the U.K.'s Online Safety Act (OSA), the EU's Digital Services Act (DSA), and the U.S.'s TAKE IT DOWN Act, which in part, has led to policy revisions on some platforms, as with yesterday's update to Bluesky. TikTok's changes, which go live on September 13, 2025, are not as substantial, as it appears the company was often just rewriting text for clarity. However, one section that saw several additions in the updated guidelines covers the rules for TikTok LIVE creators. The company warns creators they're responsible for anything that happens on their live session, even if it involves third-party tools, like real-time translation or voice-to-text tools to read out viewers' comments. TikTok advises creators to monitor those tools to make sure they're not violating the rules through these third-party services. Another notable addition to this section introduces new guidelines for commercial content. TikTok stresses that commercial content must be disclosed. It also directly states that it will reduce the visibility of content that directs users to 'purchase products off-platform in markets where TikTok Shop is available.' Techcrunch event Tech and VC heavyweights join the Disrupt 2025 agenda Netflix, ElevenLabs, Wayve, Sequoia Capital, Elad Gil — just a few of the heavy hitters joining the Disrupt 2025 agenda. They're here to deliver the insights that fuel startup growth and sharpen your edge. Don't miss the 20th anniversary of TechCrunch Disrupt, and a chance to learn from the top voices in tech — grab your ticket now and save up to $600+ before prices rise. Tech and VC heavyweights join the Disrupt 2025 agenda Netflix, ElevenLabs, Wayve, Sequoia Capital — just a few of the heavy hitters joining the Disrupt 2025 agenda. They're here to deliver the insights that fuel startup growth and sharpen your edge. Don't miss the 20th anniversary of TechCrunch Disrupt, and a chance to learn from the top voices in tech — grab your ticket now and save up to $675 before prices rise. San Francisco | REGISTER NOW The company also says it's customizing users' search results. While the prior version of the guidelines said TikTok provided 'search suggestions' that were relevant to the user, the new guidelines say both 'search results and recommendations may look different for everyone.' The guidelines explain that TikTok uses information like your past searches and what you've watched to make the search results more relevant. The updated rules reveal that comments are personalized, too. TikTok says comments are being sorted based on signals like past replies, likes, and reports. Again, this means the comment section will look different from user to user. The section on AI content has not changed dramatically, though the language here has become less verbose in parts when describing what sort of deepfake content is not allowed. TikTok previously banned content that 'shares or shows fake authoritative sources or crisis events, or falsely shows public figures in certain contexts,' it said. 'This includes being bullied, making an endorsement, or being endorsed.' That's now been replaced with language that says TikTok doesn't allow content 'that's misleading about matters of public importance or harmful to individuals.' It's interesting to note he language referencing AI endorsements was removed. (Perhaps, TikTok is paving the way for celebrity-approved, AI-generated endorsements?) In some cases, the language in the guidelines has been simplified, such as in the case of the For You Feed (FYF) Eligibility Standards section, which no longer has a long list of what's considered FYF ineligible content. Instead, details about the ineligible content are spread throughout the many different sections of the updated Community Guidelines, which makes it less helpful to reference since it's no longer all in one place. It's also worth noting that TikTok changed the language explaining the reason why it engages in content moderation. Before, the company said the process kept the platform 'safe, trustworthy, and vibrant.' Now, it describes content moderation as helping TikTok be a 'safe, fun, and creative place for everyone.' It seems 'trustworthy' got the ax. Uh-oh.
Digital Trends
28 minutes ago
- Digital Trends
Samsung's next Ultra tablet appears ready to outshine the iPad Pro
The current generation iPad Pro introduced a massive design makeover for Apple's slate, and in the process, the company also managed to make it the thinnest tablet out there. Samsung's next flagship tablet could match the waistline of the iPad Pro, quite literally, while adding a few extra goodies into the mix. What's on the table? As per leakster Ahmed Qwaider, who has a fairly solid track record with Samsung leaks, the upcoming Galaxy Tab S11 Ultra will only be 5.1 millimeters across. That's the same thickness as the 13-inch iPad Pro with the M4 silicon inside. There will be a few crucial differences though. Samsung's slate will reportedly feature a bigger 14.6-inch display. Notably, the boat-shaped notch housing two front cameras is gone, and it will be replaced by a smaller teardrop-shaped notch that is now home to a single selfie camera. Recommended Videos Just like the iPad Pro, Samsung will go with an OLED panel with a 120Hz refresh rate, 16GB of RAM, and 1TB of onboard storage. Other leaked specs of the giant Samsung tablet include an IP68-cleared build and two color options — silver and grey. How can Samsung shine? Samsung's upcoming tablet will reportedly offer 45W wired charging support, which is noticeably faster than the iPad Pro. Moreover, the Galaxy Tab S11 Ultra will supposedly feature two cameras at the back, unlike the single rear camera layout on its Apple rival. Another neat facility is the recessed magnetic slot on the tablet's metallic shell for keeping the stylus. It is also said to run the full suite of AI features that are available across Samsung's smartphones courtesy of One UI 8 with deep Google Gemini integration. As far as a launch date goes, Samsung has confirmed that the Tab S11 series will land in the second half of 2025.
Business Insider
29 minutes ago
- Business Insider
Bank of America shares an eye-popping chart showing a potential stock-market bubble: 'It better be different this time'
Stock-market bulls convinced of the power of AI to transform the economy often shrug off comparisons to the dot-com bubble a quarter century ago. The real profits are already showing up, unlike in the early days of the internet boom — so it is different this time, the thinking goes. But Bank of America strategist Michael Hartnett has a message for these investors: "It better be different this time." Hartnett, who has often expressed skepticism of the market's bull run over the last few years, shared a head-turning chart that highlights just how optimistic investors have become about the impact AI will have. It shows the S&P 500's price-to-book ratio, which measures the total market cap of the index's constituents compared to their total assets minus liabilities. The valuation measure is at a record high of 5.3, topping the 5.1 level seen in March 2000, at the peak of the dot-com bubble. Other classic valuation measures show market froth relative to history. For instance, Hartnett also shared a chart showing the S&P 500's 12-month forward price-to-earnings ratio. Except for August 2020, it's at the highest level since the dot-com era. And the Shiller cyclically-adjusted price-to-earnings ratio, which measures current prices against a 10-year rolling average of earnings, is at similar levels to 1929, 2000, and 2021. GuruFocus High valuations reflect high expectations for future earnings. Sometimes those expectations turn out to be too elevated, and prices correct, but they don't necessitate a bubble scenario. So far, many AI firms have continually beat earnings expectations, suggesting the optimism could be justified. Valuations are also better predictors of average long-term returns than near-term performance, and views on Wall Street on where the market goes in the months ahead differ. Though there are calls for caution, many strategists continue to raise their year-end S&P 500 price targets. Earlier this week, Rick Rieder, the chief investment officer of global fixed income at BlackRock, said the market is in the "best investing environment ever" thanks to factors like strong demand for stocks, looming rate cuts, and recent boosts in productivity and earnings growth. If the market does start to unwind, however, Hartnett said he sees bonds and non-US stocks benefiting. Examples of funds that offer exposure to these trades include the iShares Core U.S. Aggregate Bond ETF (AGG) and the Vanguard FTSE All-World ex-US ETF (VEU).
