JCrush dating app for Jews leaves 200,000 users’ personal data exposed

Failure to encrypt data allows access to real names, genders, email addresses, location and more; company say no indication info leaked

By JTA 7 June 2019, 7:05 pm Edit
The JCrush logo (Facebook)
The JCrush logo (Facebook)

A security lapse at the JCrush dating app for Jews left sensitive personal data of about 200,000 users exposed.

The breach was rooted in the site’s failure to encrypt its data, TechCrunch reported Tuesday. Anyone who knew how could access a user’s real name, gender, email address, IP address, location, age, sexual preferences and religious denomination.

It even allowed access to private correspondence on the site’s chat platform.

Data security experts Noam Rotem and Ran Locar shared their findings with TechCrunch.

In some cases, the geolocation data was so accurate it was easy to identify exactly where some users lived — especially in residential neighborhoods.

A spokesperson for JCrush’s parent company, Northsight Capital, said it was “aware” of the situation and “secured the database immediately when the problem occurred,” TechCrunch reported.

“There have not been any indications that the data had been accessed by malicious parties or misused in anyway,” said the company.

Most Popular
read more:
If you’d like to comment, join
The Times of Israel Community.
JOIN THE TOI COMMUNITY
Join The Times of Israel Community
Commenting is available for paying members of The Times of Israel Community only. Please join our Community to comment and enjoy other Community benefits.
Please use the following structure: example@domain.com
Confirm Mail
Thank you! Now check your email
You are now a member of The Times of Israel Community! We sent you an email with a login link to . Once you're set up, you can start enjoying Community benefits and commenting.