Tuesday, December 24, 2024
HomeComputer SecurityRussia Ordered Dating App Tinder to Share the Users Private Data Including...

Russia Ordered Dating App Tinder to Share the Users Private Data Including Chat, Audio, Video

Published on

SIEM as a Service

Famous dating service app Tinder is required to share the user data including messages to Russian Law enforcement and intelligence agencies, according to Russia’s Roskomsvoboda internet rights group.

Tinder is a leading dating app with more than 50 million active users that collects personal information provided by users that include (username, password), as well as additional information (character, lifestyle, interests, photos, videos); or credit card and other financial information.

The registry entry is initiated by the Federal Security Service of Russia and the Russian Communication Sensor Roskomsvoboda puts Tinder into the list which required to share the data to the federal authorities.

- Advertisement - SIEM as a Service

Roskomnadzor entered the company Match Group, LLC, owner of the Tinder mobile app, into the register of information dissemination organizers on Friday, May 31, 2019.

This action has been taken under the Russian laws 97-FZ and 374-FZ which requires to collect and provide, upon request, the power bodies of the Russian Federation not only all user data but also correspondence, audio, video, and other relevant materials, roskomsvoboda reported.

Russia last year issued an order to ban the Telegram app after it refused to provide the user data as required.

Roskomnadzor, Russia’s communications regulator, said it had added Tinder to its database of compliant escort website after it had “provided the needed information.”

According to Roskomnadzor “The register of organizers of information is compiled by Roskomnadzor together with the bodies carrying out operational investigative activities and state security authorities in accordance with Federal Law No. 149-ФЗ “On Information, Information Technologies and Protection of Information”. “

Tinder says in its policy “We can disclose your information, “if necessary, to a) execute court decisions, such as a court order, subpoena or search warrant, government/law enforcement investigation, or other legal requirements; b) assist in the prevention or detection of crime (in each case, according to the current legislation); or c) to protect the safety of the user.”

You can follow us on LinkedinTwitterFacebook for daily Cybersecurity updates also you can take the Best Cybersecurity courses online to keep yourself updated.

Balaji
Balaji
BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.

Latest articles

Node.js systeminformation Package Vulnerability Exposes Millions of Systems to RCE Attacks

A critical command injection vulnerability in the popular systeminformation npm package has recently been disclosed, exposing...

Skuld Malware Using Weaponized Windows Utilities Packages To Deliver Malware

Researchers discovered a malware campaign targeting the npm ecosystem, distributing the Skuld info stealer...

BellaCiao, A new .NET Malware With Advanced Sophisticated Techniques

An investigation revealed an intrusion in Asia involving the BellaCiao .NET malware, as the...

Malicious Apps On Amazon Appstore Records Screen And Interecpt OTP Verifications

A seemingly benign health app, "BMI CalculationVsn," was found on the Amazon App Store,...

API Security Webinar

72 Hours to Audit-Ready API Security

APIs present a unique challenge in this landscape, as risk assessment and mitigation are often hindered by incomplete API inventories and insufficient documentation.

Join Vivek Gopalan, VP of Products at Indusface, in this insightful webinar as he unveils a practical framework for discovering, assessing, and addressing open API vulnerabilities within just 72 hours.

Discussion points

API Discovery: Techniques to identify and map your public APIs comprehensively.
Vulnerability Scanning: Best practices for API vulnerability analysis and penetration testing.
Clean Reporting: Steps to generate a clean, audit-ready vulnerability report within 72 hours.

More like this

Node.js systeminformation Package Vulnerability Exposes Millions of Systems to RCE Attacks

A critical command injection vulnerability in the popular systeminformation npm package has recently been disclosed, exposing...

Skuld Malware Using Weaponized Windows Utilities Packages To Deliver Malware

Researchers discovered a malware campaign targeting the npm ecosystem, distributing the Skuld info stealer...

BellaCiao, A new .NET Malware With Advanced Sophisticated Techniques

An investigation revealed an intrusion in Asia involving the BellaCiao .NET malware, as the...