Despite Years of Criticism, OkCupid Fails to Ensure User Data is Safeguarded, EFF Says
OkCupid hasn’t implemented HTTPS sitewide to ensure user data is safeguarded, three years after the Electronic Frontier Foundation “first called out” the site, wrote EFF Activism Director Rainey Reitman in a blog post Friday. “For users who haven’t upgraded to…
Sign up for a free preview to unlock the rest of this article
Communications Daily is required reading for senior executives at top telecom corporations, law firms, lobbying organizations, associations and government agencies (including the FCC). Join them today!
paid accounts, their emails, chat sessions, searches, clicked links, pages viewed, and usernames are transmitted over the Internet in unencrypted plaintext, where they can be intercepted and read by anyone on the network.” OkCupid has enabled some HTTPS encryption on its site for those who pay to use the site and during the initial log in, she said. Failing to enable HTTPS across the entire site leaks a lot of data about most users, she said. Reitman encouraged the public to sign a petition started by Fight for the Future (see 1509110041) to “pressure the company into doing the right thing.”