I've seen multiple posts from 'bobdahacker'. What you are doing here isn't difficult and in many instances, illegal (although the site in India probably wouldn't bother pressing charges). I'm in the security industry and the amount of red tape around testing and disclosure is insane.
I also would never hire you, if this is your goal. You are irresponsible for publicly disclosing these vulnerabilities that obviously haven't been fixed. Actual Hackers are now going be more likely to steal information and worse to innocent people, using the platform.
As I've always said, Hacktivists are just authoritarians with no power. You didn't get what you wanted and don't care about the innocent people affected by your actions.
IlikeKitties•5mo ago
Kek i'm not the guy that found those vulnerabilities i just reposted what i found on 4chan. So Indian Users of this App are already fucked anyway. Maybe they get to enjoy calls from Microsoft about the viruses on their computers now too.
Anyway, if you build an app with no security at all, like this one, refuse to fix it you deserve all the consequences. And if indians can't get their shit together to hold these companies responsible for their incompetence, well sucks to be them.
BobDaHacker•5mo ago
Yes. I really hope this teaches them a lesson and they fix it before 4chan acts but that problem won't happen. Also If I would have stayed quiet and not informed the public that the app doesnt care about your privacy, a databreach was bound to happen at some point, because they are just leaving holes for bad guys to discover.
BobDaHacker•5mo ago
I do want people's privacy to be protected, this app has been insecure since day one, and they obviously don't care, it's been 9 months. I posted about it since they obviously didnt give a shit, because this will now hopefully force them to actually fix it.
Instead of fixing these issues they have been implement "ai matchmaking" like that is more important.
And these fixes aren't that hard either. Its not rocket science.
My goal is not to get hired, my goal is to hold them responsible and hopefully make them fucking fix it.
I hate companies that don't give a rats ass about their users security and waste time making ai shit instead of fixing their problems cuz they dont care.
billy99k•5mo ago
I also would never hire you, if this is your goal. You are irresponsible for publicly disclosing these vulnerabilities that obviously haven't been fixed. Actual Hackers are now going be more likely to steal information and worse to innocent people, using the platform.
As I've always said, Hacktivists are just authoritarians with no power. You didn't get what you wanted and don't care about the innocent people affected by your actions.
IlikeKitties•5mo ago
Anyway, if you build an app with no security at all, like this one, refuse to fix it you deserve all the consequences. And if indians can't get their shit together to hold these companies responsible for their incompetence, well sucks to be them.
BobDaHacker•5mo ago
BobDaHacker•5mo ago
Instead of fixing these issues they have been implement "ai matchmaking" like that is more important.
And these fixes aren't that hard either. Its not rocket science.
My goal is not to get hired, my goal is to hold them responsible and hopefully make them fucking fix it.
I hate companies that don't give a rats ass about their users security and waste time making ai shit instead of fixing their problems cuz they dont care.