Dating App's Reputation Schmeared by Data Breach

Graphic: Coffee Meets Bagel

Coffee Meets Bagel—the worst-named dating app in an extremely competitive field—spent Valentine’s Day performing one of the more intimate acts a company can engage in: informing its users of a data breach.

“We recently discovered that some data from your Coffee Meets Bagel account may have been acquired by an unauthorized party,” the email, which was sent to an unknown number of users including one Gizmodo staffer, begins. The company claims to have learned of the breach—affecting names and email addresses stored in the app prior to May 2018—on Monday.

Advertisement

The party who “gained access to a partial list of user details” has not been named. Coffee Meets Bagel wrote in their email to users that it had retained a forensic security company to assist in investigating, and is actively coordinating with law enforcement.

As with many dating apps, Coffee Meets Bagel allows users to sign up using their existing Facebook credentials. The company said today that only name and email data was affected by the breach, but we all know how these things can go.

We’ve reached out to the company for additional information and will update as it becomes available.

Update 2/12/2019 2:35 p.m. ET: In a statement to Gizmodo, Coffee Meets Bagel acknowledged the inopportune timing of today’s announcement, saying, “we informed our community as soon as possible—regardless of what calendar date it fell on,” and emphasized the limited scope of the breach:

Beyond emails and names, no other CMB user information was compromised. This was part of a larger breach affecting 620 million accounts that got leaked across sixteen companies, as reported by The Register.

Advertisement

In that story, published Monday, The Register reported that a dark web vendor was offering data from 6,174,513 Coffee Meets Bagel accounts for 0.13 bitcoin (about $460) before the marketplace was taken down.

[The Verge]

Advertisement

Share This Story

About the author

Bryan Menegus

Senior reporter. Tech + labor /// bgmwrites@gmail.com Keybase: keybase.io/bryangm Securedrop: http://gmg7jl25ony5g7ws.onion/

EmailTwitterPosts
PGP Fingerprint: 1905 9104 D967 2EB7 C3F5 68F9 9108 1434 C917 C1B9