With Tinder now reporting that 80% of their members...Snoopers could be able to see images downloaded by Tinder users and whether users swiped left and right on them, according to a security company.
However, when it comes to users' profile images, Tinder still uses HTTP, the older, less secure communications protocol, something which "in 2018, isn't justified any more" Erez Yalon, manager of application security research at Checkmarx, told ZDNet.
Not only is it possible for an attacker to analyse traffic coming from the API server and see the images the Tinder user is seeing, but also view what action they take on profiles -- whether they like, didn't like, or super liked on the profiles.
The Tinder API sends encrypted packets from the server, based on the response of the user.
In the police, for instance, any viewer must be at least an inspector or a superintendent.
Republican Attorney General Christopher Carr has backed a proposal that would ban "unauthorized computer access." The measure has passed the Senate and awaits action in the House.